NIST CSF: PR.DS-8 Subcategory

From NIST's Cyber Security Framework (version 1):

Integrity checking mechanisms are used to verify hardware integrity

Cyber Threat Graph Context

Explore how this control relates to the wider threat graph

CSF Mapped to SP800-53 Controls

Generated from NIST's SP800-53/CSF Crosswalk mappings.

Search:

Node
SA-10: Developer Configuration Management
SI-7: Software, Firmware, and Information Integrity

Showing 1 to 2 of 2 entries

Related ISO 27001 Controls

Annex A controls from ISO 27001 (2013) which are related to this CSF subcategory, taken from mappings by NIST and additional data from Ofgem.

Equipment maintenance (11.2.4)
ISO 27001:2013

Related ISA/IEC 62443 Controls

Clauses and controls from IEC 62443 (62443-2-1 and 62443-3-3) which are related to this CSF subcategory, taken from mappings by NIST and additional data from Ofgem.

Ensure appropriate records control (4.3.4.4.4)
ISA/IEC 62443-2-1:2009

MITRE ATT&CK Techniques

See which MITRE ATT&CK techniques this control helps to protect against. This is based on mappings to associated SP800-53 controls.

Search:

ATT&CK ID	Title	Associated Tactics
T1078	Valid Accounts	Defense Evasion, Initial Access, Persistence, Privilege Escalation
T1505.004	IIS Components	Persistence
T1505.002	Transport Agent	Persistence
T1542.005	TFTP Boot	Defense Evasion, Persistence
T1574.002	DLL Side-Loading	Defense Evasion, Persistence, Privilege Escalation
T1553.006	Code Signing Policy Modification	Defense Evasion
T1542.003	Bootkit	Defense Evasion, Persistence
T1213.003	Code Repositories	Collection
T1542	Pre-OS Boot	Defense Evasion, Persistence
T1078.004	Cloud Accounts	Defense Evasion, Initial Access, Persistence, Privilege Escalation
T1559.003	XPC Services	Execution
T1078.003	Local Accounts	Defense Evasion, Initial Access, Persistence, Privilege Escalation
T1647	Plist File Modification	Defense Evasion
T1495	Firmware Corruption	Impact
T1505	Server Software Component	Persistence
T1564.009	Resource Forking	Defense Evasion
T1601.002	Downgrade System Image	Defense Evasion
T1542.004	ROMMONkit	Defense Evasion, Persistence
T1078.001	Default Accounts	Defense Evasion, Initial Access, Persistence, Privilege Escalation
T1505.001	SQL Stored Procedures	Persistence
T1542.001	System Firmware	Defense Evasion, Persistence
T1601	Modify System Image	Defense Evasion
T1195.003	Compromise Hardware Supply Chain	Initial Access
T1601.001	Patch System Image	Defense Evasion
T1553	Subvert Trust Controls	Defense Evasion
T1491.001	Internal Defacement	Impact
T1552.004	Private Keys	Credential Access
T1218.001	Compiled HTML File	Defense Evasion
T1553.005	Mark-of-the-Web Bypass	Defense Evasion
T1547.003	Time Providers	Persistence, Privilege Escalation
T1190	Exploit Public-Facing Application	Initial Access
T1558	Steal or Forge Kerberos Tickets	Credential Access
T1037.004	RC Scripts	Persistence, Privilege Escalation
T1574.013	KernelCallbackTable	Defense Evasion, Persistence, Privilege Escalation
T1491	Defacement	Impact
T1059.008	Network Device CLI	Execution
T1218.009	Regsvcs/Regasm	Defense Evasion
T1211	Exploitation for Defense Evasion	Defense Evasion
T1218.014	MMC	Defense Evasion
T1119	Automated Collection	Collection
T1222	File and Directory Permissions Modification	Defense Evasion
T1565.002	Transmitted Data Manipulation	Impact
T1546.006	LC_LOAD_DYLIB Addition	Persistence, Privilege Escalation
T1020.001	Traffic Duplication	Exfiltration
T1114.002	Remote Email Collection	Collection
T1219	Remote Access Software	Command and Control
T1176	Browser Extensions	Persistence
T1574	Hijack Execution Flow	Defense Evasion, Persistence, Privilege Escalation
T1548.004	Elevated Execution with Prompt	Defense Evasion, Privilege Escalation
T1036.005	Match Legitimate Name or Location	Defense Evasion

Showing 1 to 50 of 195 entries

CSF Mapped to the NCSC CAF

Cyber Assessment Framework mappings generated from UK Cabinet Office data.

Search:

Control ID	Name	Description
B4.b	Secure Configuration	You securely configure the network and information systems that support the operation of essential functions.
B4.d	Vulnerability Management	You manage known vulnerabilities in your network and information systems to prevent adverse impact on the essential function.

Showing 1 to 2 of 2 entries

NIST CSF: PR.DS-8 Subcategory

Cyber Threat Graph Context

CSF Mapped to SP800-53 Controls

Related ISO 27001 Controls

Equipment maintenance (11.2.4)

Related ISA/IEC 62443 Controls

Ensure appropriate records control (4.3.4.4.4)

MITRE ATT&CK Techniques

CSF Mapped to the NCSC CAF