← Back to catalog
IA-3(4)

Device Attestation

Identification and Authentication (IA)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description

Handle device identification and authentication based on attestation by [assignment].

Discussion

Device attestation refers to the identification and authentication of a device based on its configuration and known operating state. Device attestation can be determined via a cryptographic hash of the device. If device attestation is the means of identification and authentication, then it is important that patches and updates to the device are handled via a configuration management process such that the patches and updates are done securely and do not disrupt identification and authentication to other devices.

Implementation guidance

No content available.

CSF 2.0 crosswalk

No CSF mappings exist for this control.