P-SSCRM Documentation

P.2.3 Secure-by-default implementation

Control Details

Objective

Improve the security of software at the time of installation.

Definition

Reduce the likelihood of software deploying with weak security settings by defining secure deployment parameters so that the default settings are secure and do not weaken the security functions provided by the platform, AI models, network infrastructure, or services.

Assessment Questions

  1. How do you determine whether the default installation settings for products, platform, models, network infrastructure, services defined to be secure by default?

Reference sources

  1. EO 4e(iv)
  2. SSDF PW.9.1 PW.9.2
  3. SSDF-AI PW.9.1
  4. BSIMM SE1.4
  5. 800-161 SA-5
  6. Self-attestation 4
  7. SAMM D-SA-1-A V-AA-1-A I-SD-1-A O-EM-2-A
  8. OSPS OSPS-AC-02 OSPS-BR-01