STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← All Controls

SR-11

Supply Chain Risk ManagementRev 5organization

Component Authenticity

Baselines:LowModerateHigh

Control Statement

a. Develop and implement anti-counterfeit policy and procedures that include the means to detect and prevent counterfeit components from entering the system; and b. Report counterfeit system components to [Selection: organization-defined value].

Supplemental Guidance

Sources of counterfeit components include manufacturers, developers, vendors, and contractors. Anti-counterfeiting policies and procedures support tamper resistance and provide a level of protection against the introduction of malicious code. External reporting organizations include CISA.

Related Controls (5)

PE-3SA-4SI-7SR-9SR-10

CCI Identifiers (5)

CCI-005136Defines the personnel or roles who report counterfeit system components.CCI-005132Develop and document anti-counterfeit policy that include the means to detect and prevent counterfeit components from entering the system.CCI-005133Develop and document anti-counterfeit procedures that include the means to detect and prevent counterfeit components from entering the system.CCI-005134Report counterfeit system components to source of counterfeit component, organization-defined external reporting organizations, and/or organization-defined personnel or roles.CCI-005135Defines the external reporting organizations who report counterfeit system components.

Linked STIG Checks (0)

No STIG checks reference this control.