Service Configuration¶
Automating Configuration Management¶
KSI-SVC-ACM
Changelog:
- 2026-05-04: Initial reset for the Consolidated Rules for 2026 Public Preview.
The configuration of machine-based information resources is managed using automation and persistently reviewed for drift.
Related SP 800-53 Controls: AC-2.4, CM-2, CM-2.2, CM-2.3, CM-6, CM-7.1, PL-9, PL-10, SA-5, SI-5, SR-10
Terms: Drift, Information Resource, Machine-Based (Information Resources), Persistently
Automating Secret Management¶
KSI-SVC-ASM
Changelog:
- 2026-05-04: Initial reset for the Consolidated Rules for 2026 Public Preview.
Management, protection, and regular rotation of digital keys, certificates, and other secrets is automated and persistently reviewed.
Related SP 800-53 Controls: AC-17.2, IA-5.2, IA-5.6, SC-12, SC-17
Terms: Persistently, Regularly
Evaluating and Improving Security¶
KSI-SVC-EIS
Changelog:
- 2026-05-04: Initial reset for the Consolidated Rules for 2026 Public Preview.
Information resources are persistently evaluated for opportunities to improve security and those improvements are persistently made.
Related SP 800-53 Controls: CM-7.1, CM-12.1, MA-2, PL-8, SC-7, SC-39, SI-2.2, SI-4, SR-10
Terms: Information Resource, Persistently
Preventing Residual Risk¶
KSI-SVC-PRR
Changelog:
- 2026-05-04: Initial reset for the Consolidated Rules for 2026 Public Preview.
Optional: Plans, procedures, and the state of information resources are persistently reviewed after making changes to limit and remove unwanted residual elements that would likely negatively affect the confidentiality, integrity, or availability of federal customer data.
Plans, procedures, and the state of information resources are persistently reviewed after making changes to limit and remove unwanted residual elements that would likely negatively affect the confidentiality, integrity, or availability of federal customer data.
Related SP 800-53 Controls: SC-4
Terms: Federal Customer Data, Information Resource, Likely, Persistently
Removing Unwanted Data¶
KSI-SVC-RUD
Changelog:
- 2026-05-04: Initial reset for the Consolidated Rules for 2026 Public Preview.
Optional: Unwanted federal customer data is removed promptly when requested by an agency in alignment with customer agreements, including from backups if appropriate; this typically applies when a customer spills information or when a customer seeks to remove information from a service due to a change in usage.
Unwanted federal customer data is removed promptly when requested by an agency in alignment with customer agreements, including from backups if appropriate; this typically applies when a customer spills information or when a customer seeks to remove information from a service due to a change in usage.
Related SP 800-53 Controls: SI-12.3, SI-18.4
Terms: Federal Customer Data, Promptly
Securing Network Traffic¶
KSI-SVC-SNT
Changelog:
- 2026-05-04: Initial reset for the Consolidated Rules for 2026 Public Preview.
Encrypt or otherwise secure network traffic.
Related SP 800-53 Controls: AC-1, AC-17.2, CP-9.8, SC-8, SC-8.1, SC-13, SC-20, SC-21, SC-22, SC-23
Validating Communications¶
KSI-SVC-VCM
Changelog:
- 2026-05-04: Initial reset for the Consolidated Rules for 2026 Public Preview.
Optional: The authenticity and integrity of communications between machine-based information resources is persistently validated using automation.
The authenticity and integrity of communications between machine-based information resources is persistently validated using automation.
Related SP 800-53 Controls: SC-23, SI-7.1
Terms: Information Resource, Machine-Based (Information Resources), Persistently, Validation
Validating Resource Integrity¶
KSI-SVC-VRI
Changelog:
- 2026-05-04: Initial reset for the Consolidated Rules for 2026 Public Preview.
Use cryptographic methods to validate the integrity of machine-based information resources.
Related SP 800-53 Controls: CM-2.2, CM-8.3, SC-13, SC-23, SI-7, SI-7.1, SR-10
Terms: Information Resource, Machine-Based (Information Resources), Validation