• Requirement

    1. Detect network services that have not been authorized or approved by [Assignment: organization-defined authorization or approval processes]; and
    2. [Selection (one or more): Audit; Alert [Assignment: organization-defined personnel or roles]] when detected.
  • Discussion

    Unauthorized or unapproved network services include services in service-oriented architectures that lack organizational verification or validation and may therefore be unreliable or serve as malicious rogues for valid services.

More Info

  • Title

    System Monitoring | Unauthorized Network Services
  • Family

    System and Information Integrity
  • NIST 800-53B Baseline(s)

    • High
  • Related NIST 800-53 ID


NIST 800-53A Assessment Guidance

CMMC Training

Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!