Fedramp system Security Plan (ssp) High Baseline Template

IA-4e Additional FedRAMP Requirements and Guidance

Download 1.2 Mb. Page 237/478 Date 16.12.2020 Size 1.2 Mb. #54609

Navigate this page:

• IA-4 What is the solution and how is it implemented Part a
• Part b Part c
• Part d Part e
• IA-4 (4) Control Summary Information
• IA-4 (4) What is the solution and how is it implemented

IA-4e Additional FedRAMP Requirements and Guidance: Requirement: The service provider defines the time period of inactivity for device identifiers. Guidance: For DoD clouds, see DoD cloud website for specific DoD requirements that go above and beyond FedRAMP http://iase.disa.mil/cloud_security/Pages/index.aspx. IA-4 Control Summary Information Responsible Role: Parameter IA-4(a): Parameter IA-4(d): Parameter IA-4(e): Implementation Status (check all that apply): ☐ Implemented ☐ Partially implemented ☐ Planned ☐ Alternative implementation ☐ Not applicable Control Origination (check all that apply): ☐ Service Provider Corporate ☐ Service Provider System Specific ☐ Service Provider Hybrid (Corporate and System Specific) ☐ Configured by Customer (Customer System Specific) ☐ Provided by Customer (Customer System Specific) ☐ Shared (Service Provider and Customer Responsibility) ☐ Inherited from pre-existing FedRAMP Authorization for Click here to enter text. , IA-4 What is the solution and how is it implemented? Part a Part b Part c Part d Part e IA-4 (4) Control Enhancement (M) (H) The organization manages individual identifiers by uniquely identifying each individual as [FedRAMP Assignment: contractors; foreign nationals]. IA-4 (4) Control Summary Information Responsible Role: Parameter IA-4 (4): Implementation Status (check all that apply): ☐ Implemented ☐ Partially implemented ☐ Planned ☐ Alternative implementation ☐ Not applicable Control Origination (check all that apply): ☐ Service Provider Corporate ☐ Service Provider System Specific ☐ Service Provider Hybrid (Corporate and System Specific) ☐ Configured by Customer (Customer System Specific) ☐ Provided by Customer (Customer System Specific) ☐ Shared (Service Provider and Customer Responsibility) ☐ Inherited from pre-existing FedRAMP Authorization for Click here to enter text. , IA-4 (4) What is the solution and how is it implemented? Download 1.2 Mb. Share with your friends: