Authentication Strength

Authentication Strength ()

Users, devices and other assets are authenticated (e.g. single-factor, multi-factor) commensurate with the risk of the transaction (e.g., individuals' security and privacy risks and other organizational risks)


stereotype	ControlObjective
namespace	NIST_CSF
status	MANDATORY
refCode	PR.AC-7
cis_crc	1, 12, 15, 16
cobit	DSS05.04, DSS05.10, DSS06.10
isa62443-2009	4.3.3.6.1, 4.3.3.6.2, 4.3.3.6.3, 4.3.3.6.4, 4.3.3.6.5, 4.3.3.6.6, 4.3.3.6.7, 4.3.3.6.8, 4.3.3.6.9
isa62443-2013	SR 1.1, SR 1.2, SR 1.5, SR 1.7, SR 1.8, SR 1.9, SR 1.10
iso27001	A.9.2.1, A.9.2.4, A.9.3.1, A.9.4.2, A.9.4.3, A.18.1.4
nist-sp800-53	AC-7, AC-8, AC-9, AC-11, AC-12, AC-14, IA-1, IA-2, IA-3, IA-4, IA-5, IA-8, IA-9, IA-10, IA-11



PR.AC Identity Management, Authentication & Access Control



		Identity Management, Authentication, Access Control	Authentication Strength