SI-10 Information Input Validation

GPTKB entity

Statements (25)
Predicate Object
gptkbp:instanceOf gptkb:NIST_Special_Publication
gptkbp:appliesTo Federal information systems
gptkbp:category Security and Privacy Control
gptkbp:controls Technical
Preventive
SI-10
gptkbp:definedIn gptkb:NIST_Special_Publication_800-53_Revision_5
https://www.w3.org/2000/01/rdf-schema#label SI-10 Information Input Validation
gptkbp:implementationGuidance Validate all input data to prevent security vulnerabilities
Review and update input validation rules regularly
Use automated mechanisms where possible
gptkbp:improves SI-10(1) Manual or Automated Input Validation
SI-10(2) Review and Update Input Validation Rules
SI-10(3) Input Validation for Specific Applications
gptkbp:partOf System and Information Integrity family
gptkbp:purpose To check the validity of information inputs to information systems
gptkbp:relatedTo gptkb:SI-3_Malicious_Code_Protection
gptkb:SI-7_Software,_Firmware,_and_Information_Integrity
SI-4 System Monitoring
gptkbp:requires Checking validity of inputs to information systems
Detecting invalid data
Handling invalid data appropriately
gptkbp:bfsParent gptkb:System_and_Information_Integrity
gptkb:System_and_Information_Integrity_(SI)
gptkbp:bfsLayer 7