IA-03(04) Device Attestation
Handle device identification and authentication based on attestation by ia-03.04_odp.
| Parameter ID | Definition |
|---|---|
| ia-03.04_odp | configuration management process |
Baselines
- L
- M
- H
- P
Guidance
Device attestation refers to the identification and authentication of a device based on its configuration and known operating state. Device attestation can be determined via a cryptographic hash of the device. If device attestation is the means of identification and authentication, then it is important that patches and updates to the device are handled via a configuration management process such that the patches and updates are done securely and do not disrupt identification and authentication to other devices.
Related controls 3
- CM-02 Baseline Configuration L M H P
- CM-03 Configuration Change Control L M H P
- CM-06 Configuration Settings L M H P