2.0

CMMC 2.0 CM.2.063 Control and monitor user-installed software.
Level 2 Description: Users can install software in organizational systems if provided the necessary privileges. To maintain control over the software i...
Wed, 19 Jul, 2023 at 12:08 AM
CMMC 2.0 IA.1.076 Identify information system users, processes acting on behalf of users, or devices.
Level 1 Description: Common device identifiers include Media Access Control (MAC), Internet Protocol (IP) addresses, or device-unique token identifiers...
Wed, 19 Jul, 2023 at 12:19 AM
CMMC 2.0 IA.1.077 Authenticate (or verify) the identities of those users, processes, or devices, as a prerequisite to allowing access to organizational information systems.
Level 1 Description: Individual authenticators include the following: passwords, key cards, cryptographic devices, and one-time password devices. Initi...
Wed, 19 Jul, 2023 at 12:28 AM
CMMC 2.0 IA.3.083 Use multifactor authentication for local and network access to privileged accounts and for network access to non-privileged accounts.
Level 2 Description: Multifactor authentication requires the use of two or more different factors to authenticate. The factors are defined as something...
Wed, 19 Jul, 2023 at 12:38 AM
CMMC 2.0 IA.3.084 Employ replay-resistant authentication mechanisms for network access to privileged and non-privileged accounts.
Level 2 Description: Authentication processes resist replay attacks if it is impractical to successfully authenticate by recording or replaying previou...
Wed, 19 Jul, 2023 at 12:54 AM
CMMC 2.0 IA.3.085 Prevent reuse of identifiers for a defined period.
Level 2 Description: Identifiers are provided for users, processes acting on behalf of users, or devices (3.5.). Preventing reuse of identifiers implie...
Wed, 19 Jul, 2023 at 1:02 AM
CMMC 2.0 IA.3.086 Disable identifiers after a defined period of inactivity.
Level 2 Description: Inactive identifiers pose a risk to organizational information because attackers may exploit an inactive identifier to gain undete...
Wed, 19 Jul, 2023 at 1:12 AM
CMMC 2.0 IA.2.078 Enforce a minimum password complexity and change of characters when new passwords are created
Level 2 Description: This requirement applies to single-factor authentication of individuals using passwords as individual or group authenticators, and...
Wed, 19 Jul, 2023 at 4:12 AM
CMMC 2.0 IA.2.079 Prohibit password reuse for a specified number of generations.
Level 2 Description: Password lifetime restrictions do not apply to temporary passwords   Priority: High  Domain: IDENTIFICATION AND AUTHENTICA...
Wed, 19 Jul, 2023 at 4:21 AM
CMMC 2.0 IA.2.080 Allow temporary password use for system logons with an immediate change to a permanent password.
Level 2 Description: Changing temporary passwords to permanent passwords immediately after system logon ensures that the necessary strength of the auth...
Wed, 19 Jul, 2023 at 4:31 AM