SI-10 Information Input Validation
GPTKB entity
Statements (25)
Predicate | Object |
---|---|
gptkbp:instanceOf |
gptkb:NIST_Special_Publication
|
gptkbp:appliesTo |
Federal information systems
|
gptkbp:category |
Security and Privacy Control
|
gptkbp:controls |
Technical
Preventive SI-10 |
gptkbp:definedIn |
gptkb:NIST_Special_Publication_800-53_Revision_5
|
https://www.w3.org/2000/01/rdf-schema#label |
SI-10 Information Input Validation
|
gptkbp:implementationGuidance |
Validate all input data to prevent security vulnerabilities
Review and update input validation rules regularly Use automated mechanisms where possible |
gptkbp:improves |
SI-10(1) Manual or Automated Input Validation
SI-10(2) Review and Update Input Validation Rules SI-10(3) Input Validation for Specific Applications |
gptkbp:partOf |
System and Information Integrity family
|
gptkbp:purpose |
To check the validity of information inputs to information systems
|
gptkbp:relatedTo |
gptkb:SI-3_Malicious_Code_Protection
gptkb:SI-7_Software,_Firmware,_and_Information_Integrity SI-4 System Monitoring |
gptkbp:requires |
Checking validity of inputs to information systems
Detecting invalid data Handling invalid data appropriately |
gptkbp:bfsParent |
gptkb:System_and_Information_Integrity
gptkb:System_and_Information_Integrity_(SI) |
gptkbp:bfsLayer |
7
|