HOME

SI-7 (1)

SI-7 (1) H M
Description

The information system performs an integrity check of [Assignment: organization-defined software, firmware, and information] [Selection (one or more): at startup; at [Assignment: organization-defined transitional states or security-relevant events]; [Assignment: organization- defined frequency]].

FedRAMP
  • H SI-7(1)-1 [selection to include security relevant events] SI-7(1)-2 [at least monthly]
  • M SI-7(1)-1 [selection to include security relevant events] SI-7(1)-2 [at least monthly]
DISA Cloud Computing SRG

Not appropriate for DoD to define for all CSP's infrastructure or service offerings

Not appropriate for DoD to define for all CSP's infrastructure or service offerings

Annually

Source:
DoD RMF TAG

Supplemental Guidance

Security-relevant events include, for example, the identification of a new threat to which organizational information systems are susceptible, and the installation of new hardware, software, or firmware. Transitional states include, for example, system startup, restart, shutdown, and abort.