SI-6 - Security Function Verification

Control requirements

The information system:

SI-6 (a)

Verifies the correct operation of [Assignment: organization-defined security functions];

SI-6 (b)

Performs this verification [IBM Assignment: to include upon system startup and/or restart and at least monthly];

SI-6 (c)

Notifies [IBM Assignment: to include system administrators and security personnel] of failed security verification tests; and

SI-6 (d)

[Selection (one or more): shuts the information system down; restarts the information system; [IBM Assignment: to include notification of system administrators and security personnel]] when anomalies are discovered.

Implementation guidance

See the resources that follow to learn more about how to implement this control.

• Compliance monitoring

NIST supplemental guidance

Transitional states for information systems include, for example, system startup, restart, shutdown, and abort. Notifications provided by information systems include, for example, electronic alerts to system administrators, messages to local computer consoles, and/or hardware indications such as lights.