Transition Away from Default Passwords, v1.0
Specifies requirements in accordance with the DHS CISA Secure-by-Design Pledge, published by the U.S. Dept of Homeland Security (DHS) Cybersecurity and Infrastructure Agency (CISA). Requires an organization to take steps to transition all of its existing product and service deployments away from default passwords through outreach campaigns or software updates.
Assessment Step
|
1
Transition Away from Default Passwords (TransitionAwayfromDefaultPasswords)
Does the organization take steps to transition all of its existing product and service deployments away from default passwords through outreach campaigns or software updates?
Artifact
A1
Provide evidence (e.g. organizational policies, procedures, compliance/assessment reports, etc.) and supporting notes as appropriate to support the assessor's response to this assessment step.
|
Conformance Criteria (1)
|
Transition Away from Default Passwords
The organization must take steps to transition all of its existing product and service deployments away from default passwords through outreach campaigns or software updates.
Citation
SBDP
(doc)
|