home || catalog: SP800-53rev3 / class: Technical / family: (IA) Identification and Authentication ||
search controls:
search nistpubs:

AC
AT
AU
CA
CM
CP
IA

IA-01
IA-02
IA-03
IA-04
IA-05
IA-06 *
IA-07
IA-08

IR
MA
MP
PE
PL
PM
PS
RA
SA
SC
SI
MMMMM

  IA-06: Authenticator Feedback  

base control objective:
The information system obscures feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

supplemental objective information:
The feedback from the information system does not provide information that would allow an unauthorized user to compromise the authentication mechanism. Displaying asterisks when a user types in a password, is an example of obscuring feedback of authentication information.

enhancements to the base objective:

(1) None.

mapping to FIPS199 baseline:

  LOW: base     MOD: base     HIGH: base  

related (regimented) controls:

None.

documents referenced in SP800-53rev3 for IA-06:

Document Date Status Title
NIST SP800-124 July, 2008 current   Guidelines on Cell Phone and PDA Security
NIST SP800-72 November, 2004 current   Guidelines on PDA Forensics

Search SP800-53rev3 catalog: