FTI Security Policy Profile for Partner SPs, v1.0
Profile of organizational security policy requirements for SAML Service Providers (SPs) that seek to interoperate with the FTI Identity Provider and offer federated access to services for FTI-vetted and credentialed users.
|TIP NIEF Minimal Set of Security Controls for Systems with a MODERATE-MODERATE-MODERATE Risk Profile, v1.0|
|Description||Minimal profile of security controls from NIST Special Publication 800-53 r4 for systems that need to operate at a MODERATE-MODERATE-MODERATE impact level, as recommended by NIEF. Pertains to systems that operate at MODERATE confidentiality, MODERATE integrity, and MODERATE availability. Includes only those applicable security controls from NIST SP 800-53 r4 that have been marked by NIST as Priority P1. Incorporates security control downgrading guidance, as appropriate, based on recommendations on page 35 of NIST SP 800-53 r4.|
|Security Policy||A set of rules or controls that is inteded to enforce security requirements for an organization or a system.|