>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

SI-7(10)Software, Firmware, and Information Integrity | Protection of Boot Firmware

IL5
IL6

>Control Description

Implement the following mechanisms to protect the integrity of boot firmware in organization-defined system components: organization-defined mechanisms.

>DoD Impact Level Requirements

No specific parameter values or requirements for this impact level.

>Discussion

Unauthorized modifications to boot firmware may indicate a sophisticated, targeted attack. These types of targeted attacks can result in a permanent denial of service or a persistent malicious code presence. These situations can occur if the firmware is corrupted or if the malicious code is embedded within the firmware.

System components can protect the integrity of boot firmware in organizational systems by verifying the integrity and authenticity of all updates to the firmware prior to applying changes to the system component and preventing unauthorized processes from modifying the boot firmware.

>Related Controls

SI-6

>Assessment Interview Topics

Questions assessors commonly ask

Process & Governance:

  • What policies and procedures govern protection of boot firmware?
  • Who is responsible for monitoring system and information integrity?
  • How frequently are integrity monitoring processes reviewed and updated?
  • What is your patch management process and timeline?

Technical Implementation:

  • What technical controls detect and respond to protection of boot firmware issues?
  • How are integrity violations identified and reported?
  • What automated tools support system and information integrity monitoring?
  • What anti-malware solutions are deployed and how are they configured?
  • How do you ensure timely installation of security-relevant patches?

Evidence & Documentation:

  • Can you provide recent integrity monitoring reports or alerts?
  • What logs demonstrate that SI-7(10) is actively implemented?
  • Where is evidence of integrity monitoring maintained and for how long?
  • Can you show recent malware detection reports and response actions?
  • Can you show recent patch installation records?

Ask AI

Configure your API key to use AI features.