|

controlSA-12Withdrawn

Supply Chain Protection (SA-12)

Supply Chain Protection control.

acquisitionsdlcservicessupply-chain

Why These Connect

Mitigates1

This control helps defend against or reduce the risk of the linked threat technique.

Enhances15

These enhancements add specific capabilities or refinements to the base control.

Threat Coverage(1 ATT&CK techniques)

T1195Supply Chain Compromise

Control Enhancements(15)

SA-12(1)Acquisition Strategies / Tools / Methods (SA-12(1))W

SA-12(2)Supplier Reviews (SA-12(2))W

SA-12(3)Trusted Shipping and Warehousing (SA-12(3))W

SA-12(4)Diversity of Suppliers (SA-12(4))W

SA-12(5)Limitation of Harm (SA-12(5))W

SA-12(6)Minimizing Procurement Time (SA-12(6))W

SA-12(7)Assessments Prior to Selection / Acceptance / Update (SA-12(7))W

SA-12(8)Use of All-source Intelligence (SA-12(8))W

SA-12(9)Operations Security (SA-12(9))W

SA-12(10)Validate as Genuine and Not Altered (SA-12(10))W

SA-12(11)Penetration Testing / Analysis of Elements, Processes, and Actors (SA-12(11))W

SA-12(12)Inter-organizational Agreements (SA-12(12))W

SA-12(13)Critical Information System Components (SA-12(13))W

SA-12(14)Identity and Traceability (SA-12(14))W

SA-12(15)Processes to Address Weaknesses or Deficiencies (SA-12(15))W

See Also

@SP 800-53 Overview ⚖Compare Baselines