All public logs

Jump to navigation Jump to search

Combined display of all available logs of CMMC Toolkit Wiki. You can narrow down the view by selecting a log type, the username (case-sensitive), or the affected page (also case-sensitive).

Logs
(newest | oldest) View ( | older 100) (20 | 50 | 100 | 250 | 500)
  • 03:37, 26 February 2022 Wikiadmin talk contribs created page Practice CM.L2-3.4.9 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CM.L2-3.4.9 – USER-INSTALLED SOFTWARE == ===SECURITY REQUIREMENT === Control and monitor user-installed software. === ASSESSMENT OBJECTIVES === Determine if: :...")
  • 03:36, 26 February 2022 Wikiadmin talk contribs created page Practice CM.L2-3.4.8 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CM.L2-3.4.8 – APPLICATION EXECUTION POLICY == ===SECURITY REQUIREMENT === Apply deny-by-exception (blacklisting) policy to prevent the use of unauthorized soft...")
  • 03:36, 26 February 2022 Wikiadmin talk contribs created page Practice CM.L2-3.4.7 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CM.L2-3.4.7 – NONESSENTIAL FUNCTIONALITY == ===SECURITY REQUIREMENT === Restrict, disable, or prevent the use of nonessential programs, functions, ports, proto...")
  • 03:36, 26 February 2022 Wikiadmin talk contribs created page Practice CM.L2-3.4.6 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CM.L2-3.4.6 – LEAST FUNCTIONALITY == ===SECURITY REQUIREMENT === Employ the principle of least functionality by configuring organizational systems to provide o...")
  • 03:35, 26 February 2022 Wikiadmin talk contribs created page Practice CM.L2-3.4.5 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CM.L2-3.4.5 – ACCESS RESTRICTIONS FOR CHANGE == ===SECURITY REQUIREMENT === Define, document, approve, and enforce physical and logical access restrictions ass...")
  • 03:35, 26 February 2022 Wikiadmin talk contribs created page Practice CM.L2-3.4.4 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CM.L2-3.4.4 – SECURITY IMPACT ANALYSIS == ===SECURITY REQUIREMENT === Analyze the security impact of changes prior to implementation. === ASSESSMENT OBJECTIVES...")
  • 03:35, 26 February 2022 Wikiadmin talk contribs created page Practice CM.L2-3.4.3 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CM.L2-3.4.3 – SYSTEM CHANGE MANAGEMENT == ===SECURITY REQUIREMENT === Track, review, approve or disapprove, and log changes to organizational systems. === ASSE...")
  • 03:35, 26 February 2022 Wikiadmin talk contribs created page Practice CM.L2-3.4.2 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CM.L2-3.4.2 – SECURITY CONFIGURATION ENFORCEMENT == ===SECURITY REQUIREMENT === Establish and enforce security configuration settings for information technolog...")
  • 03:34, 26 February 2022 Wikiadmin talk contribs created page Practice CM.L2-3.4.1 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CM.L2-3.4.1 – SYSTEM BASELINING == ===SECURITY REQUIREMENT === Establish and maintain baseline configurations and inventories of organizational systems (includ...")
  • 23:25, 25 February 2022 Wikiadmin talk contribs created page Practice MP.L2-3.8.9 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MP.L2-3.8.9 – PROTECT BACKUPS == === SECURITY REQUIREMENT === Protect the confidentiality of backup CUI at storage locations. === ASSESSMENT OBJECTIVES === Det...")
  • 23:25, 25 February 2022 Wikiadmin talk contribs created page Practice MP.L2-3.8.8 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MP.L2-3.8.8 – SHARED MEDIA == === SECURITY REQUIREMENT === Prohibit the use of portable storage devices when such devices have no identifiable owner. === ASSES...")
  • 23:25, 25 February 2022 Wikiadmin talk contribs created page Practice MP.L2-3.8.7 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MP.L2-3.8.7 – REMOVEABLE MEDIA == === SECURITY REQUIREMENT === Control the use of removable media on system components. === ASSESSMENT OBJECTIVES === Determine...")
  • 23:24, 25 February 2022 Wikiadmin talk contribs created page Practice MP.L2-3.8.6 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MP.L2-3.8.6 – PORTABLE STORAGE ENCRYPTION == === SECURITY REQUIREMENT === Implement cryptographic mechanisms to protect the confidentiality of CUI stored on di...")
  • 23:24, 25 February 2022 Wikiadmin talk contribs created page Practice MP.L2-3.8.5 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MP.L2-3.8.5 – MEDIA ACCOUNTABILITY == === SECURITY REQUIREMENT === Control access to media containing CUI and maintain accountability for media during transpor...")
  • 23:24, 25 February 2022 Wikiadmin talk contribs created page Practice MP.L2-3.8.4 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MP.L2-3.8.9 – PROTECT BACKUPS == === SECURITY REQUIREMENT === Protect the confidentiality of backup CUI at storage locations. === ASSESSMENT OBJECTIVES === Det...")
  • 23:23, 25 February 2022 Wikiadmin talk contribs created page Practice MP.L2-3.8.2 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MP.L2-3.8.2 – MEDIA ACCESS == === SECURITY REQUIREMENT === Limit access to CUI on system media to authorized users. === ASSESSMENT OBJECTIVES === Determine if:...")
  • 23:23, 25 February 2022 Wikiadmin talk contribs created page Practice MP.L2-3.8.1 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MP.L2-3.8.1 – MEDIA PROTECTION == === SECURITY REQUIREMENT === Protect (i.e., physically control and securely store) system media containing CUI, both paper an...")
  • 23:23, 25 February 2022 Wikiadmin talk contribs created page Practice MA.L2-3.7.6 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MA.L2-3.7.6 – MAINTENANCE PERSONNEL == === SECURITY REQUIREMENT === Supervise the maintenance activities of maintenance personnel without required access autho...")
  • 23:22, 25 February 2022 Wikiadmin talk contribs created page Practice MA.L2-3.7.5 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MA.L2-3.7.5 – NONLOCAL MAINTENANCE == === SECURITY REQUIREMENT === Require multifactor authentication to establish nonlocal maintenance sessions via external n...")
  • 23:22, 25 February 2022 Wikiadmin talk contribs created page Practice MA.L2-3.7.4 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MA.L2-3.7.4 – MEDIA INSPECTION == === SECURITY REQUIREMENT === Check media containing diagnostic and test programs for malicious code before the media are used...")
  • 23:21, 25 February 2022 Wikiadmin talk contribs created page Practice MA.L2-3.7.3 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MA.L2-3.7.3 – EQUIPMENT SANITIZATION == === SECURITY REQUIREMENT === Ensure equipment removed for off-site maintenance is sanitized of any CUI. === ASSESSMENT...")
  • 23:20, 25 February 2022 Wikiadmin talk contribs created page Practice MA.L2-3.7.2 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MA.L2-3.7.2 – SYSTEM MAINTENANCE CONTROL == === SECURITY REQUIREMENT === Provide controls on the tools, techniques, mechanisms, and personnel used to conduct s...")
  • 23:19, 25 February 2022 Wikiadmin talk contribs created page Practice MA.L2-3.7.1 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MA.L2-3.7.1 – PERFORM MAINTENANCE == === SECURITY REQUIREMENT === Perform maintenance on organizational systems.=== ASSESSMENT OBJECTIVES === Determine if: : [...")
  • 20:58, 25 February 2022 Wikiadmin talk contribs created page Practice IA.L2-3.5.11 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L2-3.5.11 – OBSCURE FEEDBACK == === SECURITY REQUIREMENT === Obscure feedback of authentication information. === ASSESSMENT OBJECTIVES === Determine if: : [...")
  • 20:58, 25 February 2022 Wikiadmin talk contribs created page Practice IA.L2-3.5.10 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L2-3.5.10 – CRYPTOGRAPHICALLY-PROTECTED PASSWORDS == === SECURITY REQUIREMENT === Store and transmit only cryptographically-protected passwords. === ASSESSM...")
  • 20:58, 25 February 2022 Wikiadmin talk contribs created page Practice IA.L2-3.5.9 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L2-3.5.9 – TEMPORARY PASSWORDS == === SECURITY REQUIREMENT === Allow temporary password use for system logons with an immediate change to a permanent passwo...")
  • 20:57, 25 February 2022 Wikiadmin talk contribs created page Practice IA.L2-3.5.8 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L2-3.5.8 – PASSWORD REUSE == === SECURITY REQUIREMENT === Prohibit password reuse for a specified number of generations. === ASSESSMENT OBJECTIVES === Deter...")
  • 20:57, 25 February 2022 Wikiadmin talk contribs created page Practice IA.L2-3.5.7 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L2-3.5.7 – PASSWORD COMPLEXITY == === SECURITY REQUIREMENT === Enforce a minimum password complexity and change of characters when new passwords are created...")
  • 20:56, 25 February 2022 Wikiadmin talk contribs created page Practice IA.L2-3.5.6 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L2-3.5.6 – IDENTIFIER HANDLING == === SECURITY REQUIREMENT === Disable identifiers after a defined period of inactivity. === ASSESSMENT OBJECTIVES === Deter...")
  • 20:56, 25 February 2022 Wikiadmin talk contribs created page Practice IA.L2-3.5.5 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L2-3.5.5 – IDENTIFIER REUSE == === SECURITY REQUIREMENT === Prevent reuse of identifiers for a defined period. === ASSESSMENT OBJECTIVES === Determine if: :...")
  • 20:56, 25 February 2022 Wikiadmin talk contribs created page Practice IA.L2-3.5.4 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L2-3.5.4 – REPLAY-RESISTANT AUTHENTICATION == === SECURITY REQUIREMENT === Employ replay-resistant authentication mechanisms for network access to privilege...")
  • 20:55, 25 February 2022 Wikiadmin talk contribs created page Practice IA.L2-3.5.3 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L2-3.5.3 – MULTIFACTOR AUTHENTICATION == === SECURITY REQUIREMENT === Use multifactor authentication for local and network access to privileged accounts and...")
  • 03:05, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.16 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.16 – DATA AT REST == === SECURITY REQUIREMENT === Protect the confidentiality of CUI at rest. === ASSESSMENT OBJECTIVES === Determine if: : [a] the...")
  • 03:05, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.15 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.15 – COMMUNICATIONS AUTHENTICITY == === SECURITY REQUIREMENT === Protect the authenticity of communications sessions. === ASSESSMENT OBJECTIVES ===...")
  • 03:05, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.14 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.14 – VOICE OVER INTERNET PROTOCOL == === SECURITY REQUIREMENT === Control and monitor the use of Voice over Internet Protocol (VoIP) technologies. =...")
  • 03:05, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.13 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.13 – MOBILE CODE == === SECURITY REQUIREMENT === Control and monitor the use of mobile code. === ASSESSMENT OBJECTIVES === Determine if: : [a] use o...")
  • 03:05, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.12 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.12 – COLLABORATIVE DEVICE CONTROL == === SECURITY REQUIREMENT === Prohibit remote activation of collaborative computing devices and provide indicati...")
  • 03:04, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.11 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.11 – CUI ENCRYPTION == === SECURITY REQUIREMENT === Employ FIPS-validated cryptography when used to protect the confidentiality of CUI. === ASSESSME...")
  • 03:04, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.10 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.10 – KEY MANAGEMENT == === SECURITY REQUIREMENT === Establish and manage cryptographic keys for cryptography employed in organizational systems. ===...")
  • 03:04, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.9 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.9 – CONNECTIONS TERMINATION == === SECURITY REQUIREMENT === Terminate network connections associated with communications sessions at the end of the...")
  • 03:04, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.8 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.8 – DATA IN TRANSIT == === SECURITY REQUIREMENT === Implement cryptographic mechanisms to prevent unauthorized disclosure of CUI during transmission...")
  • 03:03, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.7 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.7 – SPLIT TUNNELING == === SECURITY REQUIREMENT === Prevent remote devices from simultaneously establishing non-remote connections with organization...")
  • 03:03, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.6 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.6 – NETWORK COMMUNICATION BY EXCEPTION == === SECURITY REQUIREMENT === Deny network communications traffic by default and allow network communicatio...")
  • 03:03, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.4 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.4 – SHARED RESOURCE CONTROL == === SECURITY REQUIREMENT === Prevent unauthorized and unintended information transfer via shared system resources.===...")
  • 03:02, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.3 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.3 – ROLE SEPARATION == === SECURITY REQUIREMENT === Separate user functionality from system management functionality. === ASSESSMENT OBJECTIVES ===...")
  • 03:02, 25 February 2022 Wikiadmin talk contribs created page Practice SC.L2-3.13.2 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L2-3.13.2 – SECURITY ENGINEERING == === SECURITY REQUIREMENT === Employ architectural designs, software development techniques, and systems engineering prin...")
  • 20:01, 24 February 2022 Wikiadmin talk contribs created page Practice AT.L2-3.2.3 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == AT.L2-3.2.3 – INSIDER THREAT AWARENESS == === SECURITY REQUIREMENT === Provide security awareness training on recognizing and reporting potential indicators of...")
  • 20:01, 24 February 2022 Wikiadmin talk contribs created page Practice AT.L2-3.2.2 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == AT.L2-3.2.2 – ROLE-BASED TRAINING == === SECURITY REQUIREMENT === Ensure that personnel are trained to carry out their assigned information security-related du...")
  • 20:00, 24 February 2022 Wikiadmin talk contribs created page Practice AT.L2-3.2.1 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == AT.L2-3.2.1 – ROLE-BASED RISK AWARENESS == === SECURITY REQUIREMENT === Ensure that managers, systems administrators, and users of organizational systems are m...")
  • 19:10, 24 February 2022 Wikiadmin talk contribs created page Practice IR.L2-3.6.3 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IR.L2-3.6.3 – INCIDENT RESPONSE TESTING == === SECURITY REQUIREMENT === Test the organizational incident response capability. === ASSESSMENT OBJECTIVES === Det...")
  • 19:10, 24 February 2022 Wikiadmin talk contribs created page Practice IR.L2-3.6.2 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IR.L2-3.6.2 – INCIDENT REPORTING == === SECURITY REQUIREMENT === Track, document, and report incidents to designated officials and/or authorities both internal...")
  • 19:10, 24 February 2022 Wikiadmin talk contribs created page Practice IR.L2-3.6.1 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IR.L2-3.6.1 – INCIDENT HANDLING == === SECURITY REQUIREMENT === Establish an operational incident-handling capability for organizational systems that includes...")
  • 19:09, 24 February 2022 Wikiadmin talk contribs created page Practice PS.L2-3.9.2 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == PS.L2-3.9.2 – PERSONNEL ACTIONS == === SECURITY REQUIREMENT === Ensure that organizational systems containing CUI are protected during and after personnel acti...")
  • 19:09, 24 February 2022 Wikiadmin talk contribs created page Practice PS.L2-3.9.1 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == PS.L2-3.9.1 – SCREEN INDIVIDUALS == === SECURITY REQUIREMENT === Screen individuals prior to authorizing access to organizational systems containing CUI. === A...")
  • 18:34, 24 February 2022 Wikiadmin talk contribs created page Practice RA.L2-3.11.3 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == RA.L2-3.11.3 – VULNERABILITY REMEDIATION == === SECURITY REQUIREMENT === Remediate vulnerabilities in accordance with risk assessments. === ASSESSMENT OBJECTIV...")
  • 18:33, 24 February 2022 Wikiadmin talk contribs created page Practice RA.L2-3.11.2 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == RA.L2-3.11.2 – VULNERABILITY SCAN == === SECURITY REQUIREMENT === Scan for vulnerabilities in organizational systems and applications periodically and when new...")
  • 18:32, 24 February 2022 Wikiadmin talk contribs created page Practice RA.L2-3.11.1 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == RA.L2-3.11.1 – RISK ASSESSMENTS == === SECURITY REQUIREMENT === Periodically assess the risk to organizational operations (including mission, functions, image,...")
  • 18:32, 24 February 2022 Wikiadmin talk contribs created page Practice PE.L2-3.10.6 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == PE.L2-3.10.6 – ALTERNATIVE WORK SITES == === SECURITY REQUIREMENT === Enforce safeguarding measures for CUI at alternate work sites. === ASSESSMENT OBJECTIVES...")
  • 18:31, 24 February 2022 Wikiadmin talk contribs created page Practice PE.L2-3.10.2 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == PE.L2-3.10.2 – MONITOR FACILITY == === SECURITY REQUIREMENT === Protect and monitor the physical facility and support infrastructure for organizational systems...")
  • 17:29, 24 February 2022 Wikiadmin talk contribs created page Practice CA.L2-3.12.4 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CA.L2-3.12.4 – SYSTEM SECURITY PLAN == === SECURITY REQUIREMENT === Develop, document, and periodically update system security plans that describe system...")
  • 17:29, 24 February 2022 Wikiadmin talk contribs created page Practice CA.L2-3.12.3 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CA.L2-3.12.3 – SECURITY CONTROL MONITORING == === SECURITY REQUIREMENT === Monitor security controls on an ongoing basis to ensure the continued effective...")
  • 17:29, 24 February 2022 Wikiadmin talk contribs created page Practice CA.L2-3.12.2 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CA.L2-3.12.2 – PLAN OF ACTION == === SECURITY REQUIREMENT === Develop and implement plans of action designed to correct deficiencies and reduce or elimina...")
  • 17:28, 24 February 2022 Wikiadmin talk contribs created page Practice CA.L2-3.12.1 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CA.L2-3.12.1 – SECURITY CONTROL ASSESSMENT == === SECURITY REQUIREMENT === Periodically assess the security controls in organizational systems to determin...")
  • 02:45, 24 February 2022 Wikiadmin talk contribs created page Practice SI.L2-3.14.7 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SI.L2-3.14.7 – IDENTIFY UNAUTHORIZED USE == === SECURITY REQUIREMENT === Identify unauthorized use of organizational systems. === ASSESSMENT OBJECTIVES === Det...")
  • 02:45, 24 February 2022 Wikiadmin talk contribs created page Practice SI.L2-3.14.6 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SI.L2-3.14.6 – MONITOR COMMUNICATIONS FOR ATTACKS == === SECURITY REQUIREMENT === Monitor organizational systems, including inbound and outbound communications...")
  • 02:44, 24 February 2022 Wikiadmin talk contribs created page Practice SI.L2-3.14.3 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SI.L2-3.14.3 – SECURITY ALERTS & ADVISORIES == ===SECURITY REQUIREMENT === Monitor system security alerts and advisories and take action in response. === ASSES...")
  • 00:11, 24 February 2022 Wikiadmin talk contribs created page Practice SI.L1-3.14.5 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SI.L1-3.14.5 – SYSTEM & FILE SCANNING == === SECURITY REQUIREMENT === Perform periodic scans of the information system and real-time scans of files from e...")
  • 00:11, 24 February 2022 Wikiadmin talk contribs created page Practice SI.L1-3.14.4 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SI.L1-3.14.4 – UPDATE MALICIOUS CODE PROTECTION == === SECURITY REQUIREMENT === Update malicious code protection mechanisms when new releases are availabl...")
  • 00:10, 24 February 2022 Wikiadmin talk contribs created page Practice SI.L1-3.14.2 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SI.L1-3.14.2 – MALICIOUS CODE PROTECTION == === SECURITY REQUIREMENT === Provide protection from malicious code at appropriate locations within organizati...")
  • 00:09, 24 February 2022 Wikiadmin talk contribs created page Practice SI.L1-3.14.1 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SI.L1-3.14.1 – FLAW REMEDIATION == === SECURITY REQUIREMENT === Identify, report, and correct information and information system flaws in a timely manner....")
  • 23:49, 23 February 2022 Wikiadmin talk contribs created page Practice SC.L1-3.13.5 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L1-3.13.5 – PUBLIC-ACCESS SYSTEM SEPARATION == === SECURITY REQUIREMENT === Implement subnetworks for publicly accessible system components that are ph...")
  • 23:49, 23 February 2022 Wikiadmin talk contribs created page Practice SC.L1-3.13.1 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L1-3.13.1 – BOUNDARY PROTECTION == === SECURITY REQUIREMENT === Monitor, control, and protect organizational communications (i.e., information transmit...")
  • 23:28, 23 February 2022 Wikiadmin talk contribs created page Practice PE.L1-3.10.5 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == PE.L1-3.10.5 – MANAGE PHYSICAL ACCESS == === SECURITY REQUIREMENT === Control and manage physical access devices. === ASSESSMENT OBJECTIVES === Determine...")
  • 23:23, 23 February 2022 Wikiadmin talk contribs created page Practice PE.L1-3.10.4 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == PE.L1-3.10.4 – PHYSICAL ACCESS LOGS == === SECURITY REQUIREMENT === Maintain audit logs of physical access. === ASSESSMENT OBJECTIVES === Determine if: [...")
  • 23:11, 23 February 2022 Wikiadmin talk contribs created page Practice PE.L1-3.10.3 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == PE.L1-3.10.3 – ESCORT VISITORS == === SECURITY REQUIREMENT === Escort visitors and monitor visitor activity. === ASSESSMENT OBJECTIVES === Determine if:...")
  • 23:05, 23 February 2022 Wikiadmin talk contribs created page Practice PE.L1-3.10.1 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == PE.L1-3.10.1 – LIMIT PHYSICAL ACCESS == === SECURITY REQUIREMENT === Limit physical access to organizational information systems, equipment, and the respe...")
  • 22:07, 23 February 2022 Wikiadmin talk contribs created page Practice MP.L1-3.8.3 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == MP.L1-3.8.3 – MEDIA DISPOSAL == === SECURITY REQUIREMENT === Sanitize or destroy information system media containing Federal Contract Information before d...")
  • 18:56, 23 February 2022 Wikiadmin talk contribs created page Practice IA.L1-3.5.2 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L1-3.5.2 – AUTHENTICATION == === SECURITY REQUIREMENT === Authenticate (or verify) the identities of those users, processes, or devices, as a prerequis...")
  • 18:56, 23 February 2022 Wikiadmin talk contribs created page Practice IA.L1-3.5.1 Details (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L1-3.5.1 – IDENTIFICATION == === SECURITY REQUIREMENT === Identify information system users, processes acting on behalf of users, or devices. === ASSES...")
  • 17:56, 23 February 2022 Wikiadmin talk contribs created page Practice AC.L1-3.1.22 Details (Created page with "== AC.L1-3.1.22 – CONTROL PUBLIC INFORMATION == === SECURITY REQUIREMENT === Control information posted or processed on publicly accessible information systems. === ASSESSMENT OBJECTIVES === Determine if: [a] individuals authorized to post or process information on publicly accessible systems are identified; [b] procedures to ensure FCI is not posted or processed on publicly accessible systems are identified; [c] a review process is in place prior to posting of any co...")
  • 17:56, 23 February 2022 Wikiadmin talk contribs created page Practice AC.L1-3.1.20 Details (Created page with "== AC.L1-3.1.20 – EXTERNAL CONNECTIONS == === SECURITY REQUIREMENT === Verify and control/limit connections to and use of external information systems. === ASSESSMENT OBJECTIVES === Determine if: : [a] connections to external systems are identified; : [b] the use of external systems is identified; : [c] connections to external systems are verified; : [d] the use of external systems is verified; : [e] connections to external systems are controlled/limited; and : [f] t...")
  • 17:54, 23 February 2022 Wikiadmin talk contribs created page Practice AC.L1-3.1.2 Details (Created page with "== AC.L1-3.1.2 – TRANSACTION & FUNCTION CONTROL == === SECURITY REQUIREMENT === Limit information system access to the types of transactions and functions that authorized users are permitted to execute. === ASSESSMENT OBJECTIVES === Determine if: : [a] the types of transactions and functions that authorized users are permitted to execute are defined; and : [b] system access is limited to the defined types of transactions and functions for authorized users. === POTENTI...")
  • 05:40, 23 February 2022 Wikiadmin talk contribs created page Level 1 Assessment Guide (Created page with "'''Source of Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 1 Self-Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == Access Control (AC) == === Level 1 AC Practices === ==== AC.L1-3.1.1 - AUTHORIZED ACCESS CONTROL ==== {|class="wikitable" |'''SECURITY REQUIREMENT''' Limit...")
  • 03:57, 20 February 2022 Wikiadmin talk contribs created page Acronyms and Abbreviations (Created page with "== A == {| |AA||Audit and Accountability |- |ABAC||Attribute-Based Access Control |- |AC||Access Control |- |ACSC||Australian Cyber Security Centre |- |AES||Advanced Encryption Standard |- |AIA||Aerospace Industries Association |- |AM||Asset Management |- |API||Application Programming Interface |- |APT||Advanced Persistent Threat |- |AT||Awareness and Training |- |AU||Audit and Accountability |} == B == {| |BYOD||Bring Your Own Device |} == C == {| |C2M2||Cybersecurity...")
  • 03:09, 20 February 2022 Wikiadmin talk contribs created page Level 2 Assessment Guide (Created page with "'''Reference: The official [https://www.acq.osd.mil/cmmc/documentation.html CMMC Level 2 Assessment Guide] from the Office of the Under Secretary of Defense Acquisition & Sustainment.''' == Access Control (AC) == === Level 1 AC Practices === ==== AC.L1-3.1.1 – AUTHORIZED ACCESS CONTROL ==== {|class="wikitable" |- |'''SECURITY REQUIREMENT''' Limit information system access to authorized users, processes acting on behalf of authorized users, or devices (including other...")
  • 02:23, 20 February 2022 Wikiadmin talk contribs created page Practice AC.L1-3.1.1 Details (Created page with "== AC.L1-3.1.1 – AUTHORIZED ACCESS CONTROL == === SECURITY REQUIREMENT === Limit information system access to authorized users, processes acting on behalf of authorized users, or devices (including other information systems). === ASSESSMENT OBJECTIVES [NIST SP 800-171A] === Determine if: : [a] authorized users are identified; : [b] processes acting on behalf of authorized users are identified; : [c] devices (and other systems) authorized to connect to the system are id...")
  • 01:07, 20 February 2022 Wikiadmin talk contribs created page Level2 Assessment Guide (Created page with "Access Control (AC) Level 1 AC Practices AC.L1-3.1.1 – AUTHORIZED ACCESS CONTROL Limit information system access to authorized users, processes acting on behalf of authorized users, or devices (including other information systems). ASSESSMENT OBJECTIVES [NIST SP 800-171A] Determine if: [a] authorized users are identified; [b] processes acting on behalf of authorized users are identified; [c] devices (and other systems) authorized to connect to...")
  • 15:24, 18 February 2022 Wikiadmin talk contribs created page Model Glossary (Created page with "{|class="wikitable" style="width: 85%;" ! style="width: 15%"| Term ! style="width: 65%"| Description ! style="width: 20%"| Source |- |Access |Ability to make use of any information system (IS) resource. | * CNSSI 4009 * NIST SP 800-32 |- |Access Authority |An entity responsible for monitoring and granting access privileges for other authorized entities. | * CNSSI 4009 |Access Control (AC) The process of granting or denying specific requests to:  obtain and use...")
  • 03:36, 18 February 2022 Wikiadmin talk contribs created page CMMC Toolkit Wiki:Privacy policy (Created page with "This website currently does not accept user registrations. The administrator of this website also does not require, request, or store any personally identified information to access the website. For comments and inquiries on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you.")
  • 03:25, 18 February 2022 Wikiadmin talk contribs created page CMMC Toolkit Wiki:General disclaimer (Created page with "<strong>Official CMMC Reference Source: [https://www.acq.osd.mil/cmmc/index.html Department of Defense CMMC Framework]</strong> This website contains educational information that might be helpful to individuals who are interested in working with DoD's CMMC framework. This website and its creator are not associated with DoD or the office that maintains the CMMC framework. For comments and inquiries on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank...")
  • 03:19, 18 February 2022 Wikiadmin talk contribs created page Model Overview (Created page with "== Access Control (AC) == {|class="wikitable" style="width: 85%;" ! style="width: 33%"| Level 1 ! style="width: 33%"| Level 2 ! style="width: 33%"| Level 3 (TBD) |- |'''AC.L1-3.1.1''' ''Authorized Access Control'' Limit information system access to authorized users, processes acting on behalf of authorized users, or devices (including other information systems). * FAR Clause 52.204-21 b.1.i * NIST SP 800-171 Rev 2 3.1.1 |'''AC.L2-3.1.3''' ''Control CUI Flow'' Cont...")
  • 21:28, 17 February 2022 Wikiadmin talk contribs created page MediaWiki:Sidebar (Created page with " * navigation ** mainpage|mainpage-description ** CCP_Exam_Objectives|CCP Exam Objectives * Wiki Actions ** recentchanges-url|recentchanges ** randompage-url|randompage ** helppage|help-mediawiki * SEARCH * TOOLBOX * LANGUAGES")
  • 21:23, 17 February 2022 Wikiadmin talk contribs created page CMMC Toolkit Wiki:About (Created page with "<strong>Official CMMC Reference Source: [https://www.acq.osd.mil/cmmc/index.html Department of Defense CMMC Framework]</strong> This website contains information that might be helpful when working with DoD's CMMC framework. This wiki aims to provide educational content for those who are interested in the CMMC framework. This website and its creator are not associated with DoD or the office that maintains the CMMC framework. For comments and inquiries on this wiki, plea...")
  • 20:48, 17 February 2022 Wikiadmin talk contribs created page CCP Exam Objectives (Created page with "<strong>Official CMMC Reference Source: [https://www.acq.osd.mil/cmmc/index.html DoD CMMC Framework]</strong> This web page contains links that might be helpful to studying for the CMMC certification exams. Official information on the Certified CMMC Professional certification can be found on the [https://cmmcab.org/certified-cmmc-professional-ccp/ CMMC AB website]. For comments and inquiries, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == Domain: Da...")
  • 18:10, 17 February 2022 MediaWiki default talk contribs created page Main Page
(newest | oldest) View ( | older 100) (20 | 50 | 100 | 250 | 500)
Retrieved from "https://cmmcwiki.org/index.php/Special:Log"