Skip to content

Suggested Controls

Cousin edited this page Oct 31, 2024 · 8 revisions

Suggested BloSS🌻M 800-53 Controls

(Suggested and Specified by James Younger)

NIST 800-52 Rev5 PDF

  1. AC-2 Account Management

  2. AC-3 Account Enforcement

    • AC-3 CFS Reference
    • Goal: Demonstrate logical access enforcement
    • Proofs:
      • Fabric-CA Query of the users currently Enrolled
      • Verify that CA-certificates for these users are Active
      • See un-enrolled users and revoked CA-certs
  3. AC-6 Least Privilege

    • AC-6 CFS Reference
    • Proofs:
      • Roles and privileges mapping confirmation
      • Pull all the roles
      • Pull corresponding privileges
      • Make sure the user-in-roles are not over-endowed with privileges
  4. AC-17 Remote Access

  5. AU-2 Event Logging

    • AU-2 CFS Reference
    • Proofs:
      • CloudTrail, CloudWatch are ON
      • Proof that config has all AWS logging turned ON
  6. AU-3 Content of Audit Records?

    • AU-3 CFS Reference
    • Proofs:
      • CloudTrail, CloudWatch Logs Are Collecting:
        • All events
        • Events are mapped to Identity
        • Action timestamp
  7. IA-2 Identification and Authentication (organizational users)

  8. RA-5 Vulnerability Monitoring and Scanning

  9. SA-11 Developer Testing and Evaluation

  10. SC-2 Separation of System and User Functionality

  11. SC-5 Denial of Service

  12. SC-7 Boundary protection

Clone this wiki locally