on May 25, 2016The National Industrial Security Program Operating Manual (NISPOM) developed by the Department of Defense, sets comprehensive standards for protecting classified data. All government agencies and commercial contractors who have access to classified data are required to implement system protection processes to ensure continued availability and integrity of this data, and prevent its unauthorized disclosure. These regulations apply to systems used in the capture, creation, storage, processing, or distribution of restricted information.
Dependencies
The NISPOM compliance reports have the following dependencies.
| SA Rules | App Rules |
|---|---|
| Accounts Deleted Password Changes Password Changes Summary Admin Access to Compliance Systems Details Admin Access to Compliance Systems Summary User Access to Compliance Systems Details User Access to Compliance Systems Summary Logon Failures Details Logon Failures Summary Firewall Configuration Changes Router Configuration Changes Encryption Failures Encryption Key Generation and Changes | account:deleted account:password-change account:logon-failure encryption:failures encryption:key-gen-and-changes config:fw-config-changes config:router-change account:logon-success |
Citations
The NISPOM reports have the following Citations.
| Report Rule | Citation Number | Citation Description |
|---|---|---|
| Accounts Deleted | NISPOM 8-303f | User ID Removal |
| Password Changes - Detail Password Changes - Top 25 | NISPOM 8-303i(2) | Protection of Individual Passwords |
| Firewall Configuration Changes | NISPOM 8-311 | Configuration Management |
| Router Configuration Changes | NISPOM 8-311 | Configuration Management |
| User Access to Compliance Systems - Detail | NISPOM 8-806a(1b) | Audit 1 Requirements; Successful and unsuccessful logons and logoffs |
| User Access to Compliance Systems - Top 25 | NISPOM 8-806a(1b) | Audit 1 Requirements; Successful and unsuccessful logons and logoffs |
| Logon Failures - Detail | NISPOM 8-806a(1b) | Audit 1 Requirements; Successful and unsuccessful logons and logoffs |
| Logon Failures - Top 25 | NISPOM 8-806a(1b) | Audit 1 Requirements; Successful and unsuccessful logons and logoffs |
| Admin Access to Compliance Systems - Detail | NISPOM 8-806a(1b) | Audit 1 Requirements; Successful and unsuccessful logons and logoffs |
| Admin Access to Compliance Systems - Top 25 | NISPOM 8-806a(1b) | Audit 1 Requirements; Successful and unsuccessful logons and logoffs |
| Encryption Failures | NISPOM 8-605 | Data Transmission (Trans) |
| Key Generation and Changes | NISPOM 8-605 | Data Transmission (Trans) |
