SR-11: Component Authenticity

From NIST's SP800-53:

a. Develop and implement anti-counterfeit policy and procedures that include the means to detect and prevent counterfeit components from entering the system; and b. Report counterfeit system components to [Selection (one or more): source of counterfeit component; [Assignment: organization-defined external reporting organizations]; [Assignment: organization-defined personnel or roles]].

Cyber Threat Graph Context

Explore how this control relates to the wider threat graph

MITRE ATT&CK Techniques

See which MITRE ATT&CK techniques this control helps to protect against.

Search:

ATT&CK ID	Title	Associated Tactics
T1601	Modify System Image	Defense Evasion
T1059.002	AppleScript	Execution
T1505.002	Transport Agent	Persistence
T1505.001	SQL Stored Procedures	Persistence
T1505.004	IIS Components	Persistence
T1601.002	Downgrade System Image	Defense Evasion
T1601.001	Patch System Image	Defense Evasion
T1505	Server Software Component	Persistence
T1554	Compromise Client Software Binary	Persistence
T1204.003	Malicious Image	Execution
T1546.006	LC_LOAD_DYLIB Addition	Persistence, Privilege Escalation

Showing 1 to 11 of 11 entries