OpenControls Logo

STIG Viewer

NIST 800-171 v2

110 security requirements available

My Controls0800-171 Catalog110Collections0
3.14.7Derived Requirement

System and Information Integrity

Security Requirement

Identify unauthorized use of organizational systems.

Discussion

System monitoring includes external and internal monitoring. System monitoring can detect unauthorized use of organizational systems. System monitoring is an integral part of continuous monitoring and incident response programs. Monitoring is achieved through a variety of tools and techniques (e.g., intrusion detection systems, intrusion prevention systems, malicious code protection software, scanning tools, audit record monitoring software, network monitoring software). Output from system monitoring serves as input to continuous monitoring and incident response programs. Unusual/unauthorized activities or conditions related to inbound and outbound communications traffic include internal traffic that indicates the presence of malicious code in systems or propagating among system components, the unauthorized exporting of information, or signaling to external systems. Evidence of malicious code is used to identify potentially compromised systems or system components. System monitoring requirements, including the need for specific types of system monitoring, may be referenced in other requirements. [SP 800-94] provides guidance on intrusion detection and prevention systems.

Framework
NIST SP 800-171 Rev 2
Family
System and Information Integrity
Requirement Type
derived

Related Frameworks

29 paths across 2 frameworks
NIST 800-531 mapping
SI-4
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI28 mappings
CCI-001253
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001255
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001256
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001257
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001258
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002641
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002642
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002643
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002644
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002645
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002646
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002647
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002648
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002649
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002650
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002651
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002652
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002653
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002654
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002659
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002660
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002661
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002662
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-004967
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-004971
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-004972
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-004973
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-004974
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent

Related STIGs

36 STIGs reach this control through 90 CCIs via 800-53 control SI-4. Expand a row to see the responsible NICE and O*NET roles.

Operating System — Server

1 STIG
HPE 3PAR SSMC Operating System Security Technical Implementation Guide
V2R12024-08-271 of 14 findings match

Network Device

21 STIGs
Application Layer Gateway Security Requirements Guide
22024-12-0412 of 155 findings match
Application Layer Gateway Security Requirements Guide
V2R32025-09-1512 of 160 findings match
IBM DataPower ALG Security Technical Implementation Guide
V1R12016-01-2111 of 65 findings match
Palo Alto Networks ALG Security Technical Implementation Guide
V3R42025-03-1211 of 50 findings match
Palo Alto Networks IDPS Security Technical Implementation Guide
V3R22024-12-1911 of 29 findings match
Symantec ProxySG ALG Security Technical Implementation Guide
V1R32020-03-278 of 66 findings match
Cisco ASA IPS Security Technical Implementation Guide
V2R12024-08-276 of 23 findings match
Trend Micro TippingPoint IDPS Security Technical Implementation Guide
V2R22024-09-166 of 30 findings match
Show 13 more STIGs in this category →
Akamai KSD Service Impact Level 2 ALG Security Technical Implementation Guide
V1R12017-09-155 of 33 findings match
Juniper SRX Services Gateway ALG Security Technical Implementation Guide
V3R32024-12-195 of 24 findings match
Juniper SRX Services Gateway IDPS Security Technical Implementation Guide
V2R12024-06-103 of 28 findings match
F5 BIG-IP TMOS ALG Security Technical Implementation Guide
V1R22025-06-092 of 37 findings match
Cisco ASA Firewall Security Technical Implementation Guide
V2R12024-06-061 of 21 findings match
F5 BIG-IP TMOS Firewall Security Technical Implementation Guide
V1R12024-09-091 of 14 findings match
Firewall Security Requirements Guide
32024-12-041 of 34 findings match
Firewall Security Requirements Guide
V3R32025-09-221 of 35 findings match
Fortinet FortiGate Firewall Security Technical Implementation Guide
12022-09-121 of 29 findings match
Fortinet FortiGate Firewall Security Technical Implementation Guide
V1R42025-11-191 of 29 findings match
HPE Aruba Networking AOS Wireless Security Technical Implementation Guide
V1R22026-02-251 of 14 findings match
Network WLAN AP-IG Platform Security Technical Implementation Guide
V7R32023-02-131 of 9 findings match
Network WLAN AP-NIPR Platform Security Technical Implementation Guide
V7R32023-02-131 of 11 findings match

Web / Application Server

3 STIGs
Application Security and Development Security Technical Implementation Guide
62025-02-121 of 286 findings match
Application Security and Development Security Technical Implementation Guide
V6R42025-09-091 of 286 findings match
Application Server Security Requirements Guide
V4R42025-09-101 of 137 findings match

Virtualization / Container

3 STIGs
Kubernetes Security Technical Implementation Guide
22025-05-161 of 94 findings match
VMware NSX-T Distributed Firewall Security Technical Implementation Guide
V1R32023-06-231 of 7 findings match
VMware NSX-T Tier 1 Gateway Firewall Security Technical Implementation Guide
V1R32023-06-221 of 9 findings match

Cloud / Identity Service

1 STIG
Cloud Computing Mission Owner Network Security Requirements Guide
V1R22024-12-203 of 9 findings match

Endpoint Security Management

6 STIGs
Intrusion Detection and Prevention Systems Security Requirements Guide
V3R42025-09-2213 of 60 findings match
Intrusion Detection and Prevention Systems Security Requirements Guide
32025-05-1912 of 58 findings match
Dragos Platform 2.x Security Technical Implementation Guide
12025-05-151 of 19 findings match
Dragos Platform 2.x Security Technical Implementation Guide
V1R62026-02-181 of 19 findings match
Tanium 7.x Application on TanOS Security Technical Implementation Guide
V2R22025-02-111 of 75 findings match
Tanium 7.x Security Technical Implementation Guide
V2R32025-05-141 of 98 findings match

Uncategorized

1 STIG
SDN Using NV Security Technical Implementation Guide
12017-03-011 of 25 findings match