NIST 800-53R5 - IA-Identification and Authentication. Governance Risk and Compliance (GRC)



Published
NIST 800-53R5 - IA-Identification and Authentication. Governance Risk and Compliance (GRC)
Organizations employ passwords, physical authenticators, or biometrics to authenticate user identities or, in the case of multi-factor authentication, some combination thereof. Access to organizational systems is defined as either local access or network access. Local access is any access to organizational systems by users or processes acting on behalf of users, where access is obtained through direct connections without the use of networks. Network access is access to organizational systems by users (or processes acting on behalf of users) where access is obtained through network connections (i.e., nonlocal accesses). Remote access is a type of network access that involves communication through external networks. Internal networks include local area networks and wide area networks.
Category
Management
Be the first to comment