>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

AU-10(4)Non-Repudiation

Technical

>Control Description

NON-REPUDIATION | VALIDATE BINDING OF INFORMATION REVIEWER IDENTITY (a) The information system validates the binding of the information reviewer identity to the information at the transfer or release points prior to release/transfer between organization-defined security domains; and (b) The information system performs organization-defined actions in the event of a validation error.

>Supplemental Guidance

This control enhancement prevents the modification of information between review and transfer/release. The validation of bindings can be achieved, for example, by the use of cryptographic checksums. Organizations determine validations are in response to user requests or generated automatically.

Related controls: AC-4, AC-16.

Ask AI

Configure your API key to use AI features.