SI-10 Information Accuracy, Completeness, Validity, And Authenticity

Control: The information system checks information for accuracy, completeness, validity, and authenticity.

Supplemental Guidance: Checks for accuracy, completeness, validity, and authenticity of information are accomplished as close to the point of origin as possible. Rules for checking the valid syntax of information system inputs (e.g., character set, length, numerical range, acceptable values) are in place to verify that inputs match specified definitions for format and content. Inputs passed to interpreters are prescreened to prevent the content from being unintentionally interpreted as commands. The extent to which the information system is able to check the accuracy, completeness, validity, and authenticity of information is guided by organizational policy and operational requirements.

Control Enhancements: (0) None.

Baseline: LOW Not Selected MOD SI-10 HIGH SI-10

Family: System And Information Integrity

Class: Operational

ISO 17799 mapping: 10.7.3, 12.2.1, 12.2.2

COBIT 4.1 mapping: PO2.4, AI2.3, AI2.4, DS11.1, DS11.6, AC3, AC4, AC6

PCI-DSS v2 mapping: None.