SI-10 Information Input Validation
GPTKB entity
Statements (25)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:NIST_Special_Publication
|
| gptkbp:appliesTo |
Federal information systems
|
| gptkbp:category |
Security and Privacy Control
|
| gptkbp:controls |
Technical
Preventive SI-10 |
| gptkbp:definedIn |
gptkb:NIST_Special_Publication_800-53_Revision_5
|
| https://www.w3.org/2000/01/rdf-schema#label |
SI-10 Information Input Validation
|
| gptkbp:implementationGuidance |
Validate all input data to prevent security vulnerabilities
Review and update input validation rules regularly Use automated mechanisms where possible |
| gptkbp:improves |
SI-10(1) Manual or Automated Input Validation
SI-10(2) Review and Update Input Validation Rules SI-10(3) Input Validation for Specific Applications |
| gptkbp:partOf |
System and Information Integrity family
|
| gptkbp:purpose |
To check the validity of information inputs to information systems
|
| gptkbp:relatedTo |
gptkb:SI-3_Malicious_Code_Protection
gptkb:SI-7_Software,_Firmware,_and_Information_Integrity SI-4 System Monitoring |
| gptkbp:requires |
Checking validity of inputs to information systems
Detecting invalid data Handling invalid data appropriately |
| gptkbp:bfsParent |
gptkb:System_and_Information_Integrity
gptkb:System_and_Information_Integrity_(SI) |
| gptkbp:bfsLayer |
7
|