Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z

configuration control

Abbreviation(s) and Synonym(s):

None

Definition(s):

  Process for controlling modifications to hardware, firmware, software, and documentation to protect the information system against improper modifications before, during, and after system implementation.
Source(s):
NIST SP 800-128 under Configuration Control (CNSSI 4009)
NIST SP 800-37 Rev. 1 under Configuration Control (CNSSI 4009)
NIST SP 800-53 Rev. 4 under Configuration Control (CNSSI 4009)
NIST SP 800-137 under Configuration Control (or Configuration Management) (CNSSI 4009)

  Process for controlling modifications to hardware, firmware, software, and documentation to ensure the information system is protected against improper modifications before, during, and after system implementation.
Source(s):
NIST SP 800-82 Rev. 2 under Configuration Control (CNSSI 4009)

  Process of controlling modifications to hardware, firmware, software, and documentation to protect the information system against improper modifications prior to, during, and after system implementation.
Source(s):
CNSSI 4009-2015 (NIST SP 800-37 Rev. 1)

  Process for controlling modifications to hardware, firmware, software, and documentation to ensure that the information system is protected against improper modifications before, during, and after system implementation.
Source(s):
NIST SP 800-18 Rev. 1 under Configuration Control (CNSSI 4009)