|
controlSR-4
Provenance (SR-4)
Document, monitor, and maintain valid provenance of the following systems, system components, and associated data: [organization-defined].
supply-chainacquisitionthird-partyrisk
Why These Connect
Supports32
These related controls work together — a change to one may affect the others.
Enhances4
These enhancements add specific capabilities or refinements to the base control.
Related Controls(17)
CM-8System Component Inventory (CM-8)
LMH
MA-2Controlled Maintenance (MA-2)LMH
MA-6Timely Maintenance (MA-6)MH
PE-16Delivery and Removal (PE-16)LMH
PL-2System Security and Privacy Plans (PL-2)LMH
PM-30Supply Chain Risk Management Strategy (PM-30)PM-31Continuous Monitoring Strategy (PM-31)SA-3System Development Life Cycle (SA-3)LMH
SA-8Security and Privacy Engineering Principles (SA-8)LMH
SA-10Developer Configuration Management (SA-10)MH
SA-15Development Process, Standards, and Tools (SA-15)MH
SA-24Design For Cyber Resiliency (SA-24)SI-7Software, Firmware, and Information Integrity (SI-7)MH
RA-9Criticality Analysis (RA-9)MH
SI-4System Monitoring (SI-4)LMH
SR-9Tamper Resistance and Detection (SR-9)H
SR-10Inspection of Systems or Components (SR-10)LMH