SI-03.6: Testing and Verification

SI-03.6 · Testing and Verification

Control Description

Test malicious code protection mechanisms {{ insert: param, si-03.06_odp }} by introducing known benign code into the system; and Verify that the detection of the code and the associated incident reporting occur.

Impact Baselines

Security baselines where this control applies

Not in any baseline

Control Properties

SP800-53-enhancement

organization

Enhancement

Control Statement

The control requirements

(a) Test malicious code protection mechanisms {{ insert: param, si-03.06_odp }} by introducing known benign code into the system; and

(b) Verify that the detection of the code and the associated incident reporting occur.

Supplemental Guidance

None.

Related NIST Controls

Other NIST 800-53 controls related to this one

CA-02

CA-07

RA-05