SA-17(6)

  • Requirement

    Require the developer of the system, system component, or system service to structure security-relevant hardware, software, and firmware to facilitate testing.

  • Discussion

    Applying the security design principles in SP 800-160-1 promotes complete, consistent, and comprehensive testing and evaluation of systems, system components, and services. The thoroughness of such testing contributes to the evidence produced to generate an effective assurance case or argument as to the trustworthiness of the system, system component, or service.

More Info

  • Title

    Developer Security and Privacy Architecture and Design | Structure for Testing

  • Family

    System and Services Acquisition

  • Related NIST 800-53 ID

    SA-5;SA-11

CMMC Training

Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!

Learn More