|
PR.AA-02: Identities are proofed and bound to credentials based on the context of interactions
|
http://cyfun.data.gift/data/subcategory_PR.AA-02
|
17 |
|
PR.AA-03.1: A ll wireless access points used by the organisation, including those providing guest access, shall be securely configured, managed, and monitored to prevent unauthor- ised access and ensure network integrity.
|
http://cyfun.data.gift/data/requirement_PR_AA_03_1
|
21 |
|
PR.AA-03.2: Multi-Factor Authentication (MFA) shall be required to access the organisation's networks remotely.
|
http://cyfun.data.gift/data/requirement_PR_AA_03_2
|
23 |
|
PR.AA-03.3: The organisation shall define, document, and implement usage restrictions, connec- tion requirements, and authorisation procedures for remote access to its critical systems. These controls shall ensure that only approved users can connect, using secure methods, with access limited to what is necessary for their role.
|
http://cyfun.data.gift/data/requirement_PR_AA_03_3
|
21 |
|
PR.AA-03.4: Remote access to the organisation’s critical systems shall be monitored and cryp- tographic mechanisms shall be implemented where determined necessary.
|
http://cyfun.data.gift/data/requirement_PR_AA_03_4
|
17 |
|
PR.AA-03.5: The security for connections with external systems shall be verified and framed by documented agreements.
|
http://cyfun.data.gift/data/requirement_PR_AA_03_5
|
17 |
|
PR.AA-03: Users, services, and hardware are authenticated
|
http://cyfun.data.gift/data/nist_subcategory_PR_AA_03
|
5 |
|
PR.AA-03: Users, services, and hardware are authenticated
|
http://cyfun.data.gift/data/subcategory_PR.AA-03
|
25 |
|
PR.AA-04.1: Identity assertions shall be protected, conveyed, and verified
|
http://cyfun.data.gift/data/requirement_PR_AA_04_1
|
17 |
|
PR.AA-04: Identity assertions are protected, conveyed, and verified
|
http://cyfun.data.gift/data/nist_subcategory_PR_AA_04
|
5 |
|
PR.AA-04: Identity assertions are protected, conveyed, and verified
|
http://cyfun.data.gift/data/subcategory_PR.AA-04
|
13 |
|
PR.AA-05.1: Access permissions, rights, and authorisations shall be defined, managed, enforced and reviewed.
|
http://cyfun.data.gift/data/requirement_PR_AA_05_1
|
23 |