User contributions for David

2 March 2026

• 01:3301:33, 2 March 2026 diff hist −3 32 CFR Part 170 No edit summary current
• 01:3301:33, 2 March 2026 diff hist −3 Model Overview No edit summary current
• 01:3201:32, 2 March 2026 diff hist −3 Main Page No edit summary current
• 01:3201:32, 2 March 2026 diff hist −3 CCA Blueprint No edit summary current
• 01:3201:32, 2 March 2026 diff hist −3 CCP Blueprint No edit summary current
• 01:3201:32, 2 March 2026 diff hist −3 External References No edit summary current
• 01:3101:31, 2 March 2026 diff hist −3 Commonly Accepted and Practiced CMMC Operation Matrix No edit summary current
• 01:3101:31, 2 March 2026 diff hist −3 DoD Assessment Methodology No edit summary current
• 01:3101:31, 2 March 2026 diff hist −3 CMMC Assessment Process No edit summary current
• 01:3001:30, 2 March 2026 diff hist −3 CMMC Hashing Guide No edit summary current
• 01:3001:30, 2 March 2026 diff hist −3 Level 3 Assessment Guide No edit summary current
• 01:3001:30, 2 March 2026 diff hist −3 Level 3 Scoping Guidance No edit summary current
• 01:3001:30, 2 March 2026 diff hist −3 Level 2 Assessment Guide No edit summary current
• 01:3001:30, 2 March 2026 diff hist −3 Level 2 Scoping Guidance No edit summary current
• 01:2901:29, 2 March 2026 diff hist −3 Level 1 Self-Assessment Guide No edit summary current
• 01:2901:29, 2 March 2026 diff hist −3 Level 1 Scoping Guidance No edit summary current
• 01:2901:29, 2 March 2026 diff hist −3 Certification Practice Quiz No edit summary current Tag: Visual edit: Switched

23 February 2026

• 18:3118:31, 23 February 2026 diff hist +3 Level 2 Scoping Guidance →Separation Techniques
• 18:3018:30, 23 February 2026 diff hist +1 Level 2 Scoping Guidance →Separation Techniques

28 September 2025

• 12:0312:03, 28 September 2025 diff hist +723 External References →N

11 September 2025

• 21:4721:47, 11 September 2025 diff hist −50 Practice CA.L2-3.12.4 Details →FURTHER DISCUSSION current

16 August 2025

• 23:3223:32, 16 August 2025 diff hist −1 Level 2 Assessment Guide →SC.L2-3.13.4 – Shared Resource Control
• 21:3721:37, 16 August 2025 diff hist +3 Level 2 Assessment Guide →IA.L2-3.5.8 – Password Reuse

11 June 2025

• 20:3520:35, 11 June 2025 diff hist −79 Main Page →Site Update Notices

28 May 2025

• 22:0722:07, 28 May 2025 diff hist +8 32 CFR Part 170 →§ 170.4 Acronyms and definitions.
• 22:0622:06, 28 May 2025 diff hist +8 32 CFR Part 170 →§ 170.4 Acronyms and definitions.

27 May 2025

• 18:2018:20, 27 May 2025 diff hist 0 Level 2 Scoping Guidance →External Service Provider Considerations
• 18:1418:14, 27 May 2025 diff hist +7 Level 2 Scoping Guidance →External Service Provider Considerations

21 May 2025

• 14:0214:02, 21 May 2025 diff hist +4 Main Page →Site Update Notices
• 14:0114:01, 21 May 2025 diff hist 0 Main Page →Site Update Notices

14 May 2025

• 16:0216:02, 14 May 2025 diff hist −2 Level 2 Assessment Guide →AT.L2-3.2.2 – Role-Based Training

13 May 2025

• 22:4822:48, 13 May 2025 diff hist 0 Level 2 Assessment Guide →SI.L2-3.14.2 – Malicious Code ProTection [CUI Data] Tag: Visual edit: Switched

10 May 2025

• 00:3500:35, 10 May 2025 diff hist −1 Level 2 Assessment Guide →CA.L2-3.12.4 – System Security Plan =

30 April 2025

• 02:3102:31, 30 April 2025 diff hist +2,710 N LLMResponse AC.L2-3.1.4.c Created page with "Ranking Evidence Types for Assessment Objective [c] For the assessment objective "[c] access privileges that enable individuals to exercise the duties that require separation are granted to separate individuals," here's the ranking of evidence types supported by assessment objects: == Evidence Type Ranking == 1. **Artifacts (highest value)** - System access authorization records showing privilege distribution - Access control lists demonstrating separation of pr..." current
• 02:3002:30, 30 April 2025 diff hist +2,553 N LLMResponse AC.L2-3.1.4.b Created page with "Ranking Evidence Types for Assessment Objective [b] For the assessment objective "[b] responsibilities for duties that require separation are assigned to separate individuals," here's the ranking of evidence types supported by assessment objects: == Evidence Type Ranking == 1. **Artifacts (highest value)** - User account listings with role assignments - System access authorizations showing different individuals assigned to separated duties - Access control ma..." current
• 02:2902:29, 30 April 2025 diff hist +2,368 N LLMResponse AC.L2-3.1.4.a Created page with "Ranking Evidence Types for Assessment Objective [a] For the assessment objective "[a] the duties of individuals requiring separation are defined," I'll rank the evidence types supported by assessment objects from most to least valuable: == Evidence Type Ranking == 1. **Documents (highest value)** - Access control policy documents - Written procedures addressing divisions of responsibility and separation of duties - System security plan with defined separation..." current
• 02:2802:28, 30 April 2025 diff hist +305 N LLMPrompt AC.L2-3.1.4.c Created page with "For the assessment objective, [c] access privileges that enable individuals to exercise the duties that require separation are granted to separate individuals, rank the evidence types supported by assessment objects. Also, how should I prioritize the three assessment approaches in obtaining the evidence?" current
• 02:2802:28, 30 April 2025 diff hist +269 N LLMPrompt AC.L2-3.1.4.b Created page with "For the assessment objective, [b] responsibilities for duties that require separation are assigned to separate individuals, rank the evidence types supported by assessment objects. Also, how should I prioritize the three assessment approaches in obtaining the evidence?" current
• 02:2702:27, 30 April 2025 diff hist +239 N LLMPrompt AC.L2-3.1.4.a Created page with "For the assessment objective, [a] the duties of individuals requiring separation are defined, rank the evidence types supported by assessment objects. Also, how should I prioritize the three assessment approaches in obtaining the evidence?" current
• 02:2502:25, 30 April 2025 diff hist +6,442 N LLMPrompt AC.L2-3.1.4 Created page with "I am a cybersecurity manager working for an organization that is a DoD contractor. I need to implement various security practices that conform to DoD's CMMC program at level 2. The CMMC program stipulates security practices that are based on NIST Special Publication 800-171 R2. For each security practice of CMMC Level 2, I need to show evidence that my organization is in compliance with CMMC. Each security practice has a security requirement and several assessment object..." current
• 02:1802:18, 30 April 2025 diff hist +2,315 N LLMResponse AC.L2-3.1.3.e Created page with "Ranking Evidence Types for Enforcement of CUI Flow Authorizations For assessment objective [e] "approved authorizations for controlling the flow of CUI are enforced," here's my ranking of evidence types based on the CMMC assessment objects: == Evidence Type Ranking == 1. **Technical Testing Evidence (Highest Priority)** - Results from testing mechanisms implementing information flow enforcement policy - Configuration screenshots of boundary protection devices..." current
• 02:1702:17, 30 April 2025 diff hist +2,287 N LLMResponse AC.L2-3.1.3.d Created page with "Ranking Evidence Types for CUI Flow Authorizations For assessment objective [d] "authorizations for controlling the flow of CUI are defined," here's my ranking of evidence types based on the CMMC assessment objects: == Evidence Type Ranking == 1. **Documentation (Highest Priority)** - List of information flow authorizations - Access control policy sections on authorization requirements - System connection or processing agreements - System security plan se..." current
• 02:1602:16, 30 April 2025 diff hist +2,382 N LLMResponse AC.L2-3.1.3.c Created page with "Ranking Evidence Types for Designated Sources and Destinations For assessment objective [c] "designated sources and destinations (e.g., networks, individuals, and devices) for CUI within the system and between interconnected systems are identified," here's my ranking of evidence types based on the CMMC assessment objects: == Evidence Type Ranking == 1. **Documentation (Highest Priority)** - Network diagrams showing CUI flow paths - System design documentation id..." current
• 02:1402:14, 30 April 2025 diff hist +2,127 N LLMResponse AC.L2-3.1.3.b Created page with "Ranking Evidence Types for Methods and Enforcement Mechanisms For assessment objective [b] "methods and enforcement mechanisms for controlling the flow of CUI are defined," here's how I rank the evidence types based on the CMMC assessment objects: == Evidence Type Ranking == 1. **Documentation (High Priority)** - System design documentation showing flow control mechanisms - Configuration settings and associated documentation - Information flow control policie..." current
• 02:1302:13, 30 April 2025 diff hist +1,938 N LLMResponse AC.L2-3.1.3.a Created page with "Ranking Evidence Types for Information Flow Control Policies For assessment objective [a] "information flow control policies are defined," I'll rank the evidence types from most to least important based on the assessment objects in the CMMC documentation: == Evidence Type Ranking == 1. **Documentation (Highest Priority)** - Access control policy documents - Information flow control policy documentation - System security plan sections on information flow -..." current
• 02:1102:11, 30 April 2025 diff hist +249 N LLMPrompt AC.L2-3.1.3.e Created page with "For the assessment objective, [e] approved authorizations for controlling the flow of CUI are enforced, rank the evidence types supported by assessment objects. Also, how should I prioritize the three assessment approaches in obtaining the evidence?" current
• 02:1102:11, 30 April 2025 diff hist +239 N LLMPrompt AC.L2-3.1.3.d Created page with "For the assessment objective, [d] authorizations for controlling the flow of CUI are defined, rank the evidence types supported by assessment objects. Also, how should I prioritize the three assessment approaches in obtaining the evidence?" current
• 02:1102:11, 30 April 2025 diff hist +335 N LLMPrompt AC.L2-3.1.3.c Created page with "For the assessment objective, [c] designated sources and destinations (e.g., networks, individuals, and devices) for CUI within the system and between interconnected systems are identified, rank the evidence types supported by assessment objects. Also, how should I prioritize the three assessment approaches in obtaining the evidence?" current
• 02:1002:10, 30 April 2025 diff hist +259 N LLMPrompt AC.L2-3.1.3.b Created page with "For the assessment objective, [b] methods and enforcement mechanisms for controlling the flow of CUI are defined, rank the evidence types supported by assessment objects. Also, how should I prioritize the three assessment approaches in obtaining the evidence?" current
• 02:1002:10, 30 April 2025 diff hist +226 N LLMPrompt AC.L2-3.1.3.a Created page with "For the assessment objective, [a] information flow control policies are defined, rank the evidence types supported by assessment objects. Also, how should I prioritize the three assessment approaches in obtaining the evidence?" current