SI-07 Software, Firmware, and Information Integrity

a. Employ integrity verification tools to detect unauthorized changes to the following software, firmware, and information: si-7_prm_1 ; and

b. Take the following actions when unauthorized changes to the software, firmware, and information are detected: si-7_prm_2.

Parameter ID Definition
si-7_prm_1 organization-defined software, firmware, and information
si-7_prm_2 organization-defined actions
si-07_odp.01 software
si-07_odp.02 firmware
si-07_odp.03 information
si-07_odp.04 actions
si-07_odp.05 actions
si-07_odp.06 actions

Baselines

Guidance

Unauthorized changes to software, firmware, and information can occur due to errors or malicious activity. Software includes operating systems (with key internal components, such as kernels or drivers), middleware, and applications. Firmware interfaces include Unified Extensible Firmware Interface (UEFI) and Basic Input/Output System (BIOS). Information includes personally identifiable information and metadata that contains security and privacy attributes associated with information. Integrity-checking mechanisms—including parity checks, cyclical redundancy checks, cryptographic hashes, and associated tools—can automatically monitor the integrity of systems and hosted applications.

References 7

Control Enhancements 17

Related controls 23