NIST 800-53 Rev 5
424 controls available
SA-4(5)high
System, Component, and Service Configurations
System and Services Acquisition
Control Statement
Require the developer of the system, system component, or system service to:
Discussion
Examples of security configurations include the U.S. Government Configuration Baseline (USGCB), Security Technical Implementation Guides (STIGs), and any limitations on functions, ports, protocols, and services. Security characteristics can include requiring that default passwords have been changed.
- Framework
- NIST SP 800-53 Rev 5
- Family
- System and Services Acquisition
- Baselines
- high
Related Frameworks
3 paths across 1 framework
Related Frameworks
CCI3 mappings
CCI-003109
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003110
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003111
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
Related STIGs
2 STIGs reach this control through 50 CCIs. Expand a row to see the responsible NICE and O*NET roles.
Web / Application Server
2 STIGs
Web / Application Server
2 STIGsApplication Security and Development Security Technical Implementation Guide
62025-02-122 of 286 findings match
H1M1
Application Security and Development Security Technical Implementation Guide
V6R42025-09-092 of 286 findings match
H1M1