IA-03(04) Device Attestation
Handle device identification and authentication based on attestation by ia-03.04_odp.
|ia-03.04_odp||configuration management process|
Device attestation refers to the identification and authentication of a device based on its configuration and known operating state. Device attestation can be determined via a cryptographic hash of the device. If device attestation is the means of identification and authentication, then it is important that patches and updates to the device are handled via a configuration management process such that the patches and updates are done securely and do not disrupt identification and authentication to other devices.
Related controls 3
- CM-02 Baseline Configuration L M H P
- CM-03 Configuration Change Control L M H P
- CM-06 Configuration Settings L M H P