SI-3 (6) Malicious Code Protection | Testing / Verification
The organization:
SI-3 (6)(a): Tests malicious code protection mechanisms [Assignment: organization-defined frequency] by introducing a known benign, non-spreading test case into the information system; and
SI-3 (6)(b): Verifies that both detection of the test case and associated incident reporting occur.
Applicable CNSSI 1253 Baselines
Confidentiality
- L
- M
- H
Integrity
- L
- M
- H
Availability
- L
- M
- H