SI-7 (1)

System and Information IntegrityRev 5system

Integrity Checks

Baselines:ModerateHigh

Control Statement

Perform an integrity check of [Assignment: organization-defined software, firmware, and information] [Selection: organization-defined value].

Supplemental Guidance

Security-relevant events include the identification of new threats to which organizational systems are susceptible and the installation of new hardware, software, or firmware. Transitional states include system startup, restart, shutdown, and abort.

CCI Identifiers (10)

CCI-002711Perform an integrity check of organization-defined firmware at startup, at organization-defined transitional states or security-relevant events, or on an organization-defined frequency.CCI-002712Perform an integrity check of organization-defined information at startup, at organization-defined transitional states or security-relevant events, or on an organization-defined frequency.CCI-001298The organization reassesses the integrity of software and information by performing, on an organization-defined frequency, integrity scans of the information system.CCI-001299The organization defines the frequency of integrity scans to be performed on the information system.CCI-002705Defines the software on which integrity checks will be performed.CCI-002708Defines the transitional state or security-relevant events when performing integrity checks on software, firmware, and information.CCI-002709Defines the frequency at which integrity checks of software, firmware, and information will be performed.CCI-002710

Linked STIG Checks (5)

Across 3 STIGs. Click to expand.

SI-7 (1)

Integrity Checks

Control Statement

Supplemental Guidance

CCI Identifiers (10)

Assessment Methods

Linked STIG Checks (5)