Trust Interoperability Profiles (51-75 of 1855)

Trust Interoperability Profile Name Version
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for acess control policies (e.g., identity-based policies, role-based policies, rule-based policies) and associated access enforcement mechanisms (e.g., access control lists, access control matrices, cryptography) to be employed by agencies to control access between users (or processes acting on behalf of users) and objects (e.g., devices, files, records, processes, programs, domains) in the information system.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an agency to approve individual access privileges.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an agency to enforce physical and logical access restrictions associated with changes to the information system; and generate, retain, and review records reflecting all such changes.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an agency to enforce the most restrictive set of rights/privileges or access needed by users for the performance of specified tasks.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an agency to implement least privilege based on specific duties, operations, or information systems as necessary to mitigate risk to CJI.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for logs of access privilege changes to be maintained for a minimum of one year or at least equal to the agency's record retention policy - whichever is greater.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for access controls to be in place and operational for all IT systems to prevent multiple concurrent active sessions for one user identification, for those applications accessing CJI, unless the agency grants authority based upon operational business needs.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for access controls to be in place and operational for all IT systems to ensure that only authorized personnel can add, change, or remove component devices, dial-up connections, and remove or alter programs.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for agencies to control access to sensitive information based on job assignment or function (i.e., the role) of the user seeking access.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for systems to enforce a limit (where feasible) of no more than 5 consecutive invalid access attempts by a user (attempting to access CJI or systems with access to CJI).
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for a system to automatically lock the account/node for a 10 minute time period unless released by an administrator.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for a system to display an approved system use notification message, before granting access, informing potential users of various usages and monitoring rules, and at a minimum provide the following information: <br> 1. The user is accessing a restricted information system. <br> 2. System usage may be monitored, recorded, and subject to audit. <br> 3. Unauthorized use of the system is prohibited and may be subject to criminal and/or civil penalties. <br> 4. Use of the system indicates consent to monitoring and recording. <br> 5. Provide appropriate privacy and security notices (based on associated privacy and security policies or summaries)
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an information system to display display an approved system use notification message that remains on the screen until the user acknowledges the notification and takes explicit actions to log on to the information system.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an organization's privacy and security policies to be consistent with applicable laws, Executive Orders, directives, policies, regulations, standards, and guidance.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an information system to prevent further access to the system by initiating a session lock after a maximum of 30 minutes of inactivity.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an information system to maintain a session lock until the user reestablishes access using appropriate identification and authentication procedures.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an agency to authorize, monitor, and control all methods of remote access to the information system.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an agency to employ automated mechanisms to facilitate the monitoring and control of remote access methods.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an agency to control all remote accesses through managed access control points.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an agency to document the technical and administrative process for enabling remote access for privileged functions in the security plan for the system.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an agency to uniquely identify information system users, administrators, maintenance personnel, and processes acting on behalf of users and authenticate the identities of those users or processes as a prerequisite to allowing access to agency information systems or services.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an agency to ensure that all user IDs belong to currently authorized users.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for an agency to ensure that identification data is kept current by adding new users and disabling and/or deleting former users.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for agencies to follow the secure password attributes, below, to authenticate an individual's unique ID: <br> 1. Be a minimum length of eight (8) characters on all systems. <br> 2. Not be a dictionary word or proper name. <br> 3. Not be the same as the Userid. <br> 4. Expire within a maximum of 90 calendar days. <br> 5. Not be identical to the previous ten (10) passwords.
1.0
This Trust Interoperability Profile addresses the FBI Criminal Justice Information Services (CJIS) requirements for passwords to not be transmitted in the clear outside of a secure location.
1.0
This page is also available as JSON and XML.