>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

SA-10(1)Developer Configuration Management

PBMM (P3)
Secret (P3)
Management

>Control Description

DEVELOPER CONFIGURATION MANAGEMENT | SOFTWARE / FIRMWARE INTEGRITY VERIFICATION The organization requires the developer of the information system, system component, or information system service to enable integrity verification of software and firmware components.

>Supplemental Guidance

This control enhancement allows organizations to detect unauthorized changes to software and firmware components through the use of tools, techniques, and/or mechanisms provided by developers. Integrity checking mechanisms can also address counterfeiting of software and firmware components. Organizations verify the integrity of software and firmware components, for example, through secure one-way hashes provided by developers.

Delivered software and firmware components also include any updates to such components. Related control: SI-7.

Ask AI

Configure your API key to use AI features.