02.02 List All Software Components Installed on the System

Home ‣System Security Plan R3 (SSP) ‣02 System Environment (SE) ‣02.02 List All Software Components Installed on the System

Introduction

NIST SP 800-171 revision 3 outlines security requirements for protecting Controlled Unclassified Information (CUI) in non-federal systems. It mandates maintaining a comprehensive inventory of all software components, including make/OEM, model, version, service packs, and the responsible party. This inventory can be maintained in an organizational component database.

Example: List all software components installed on the system

Comment By wno***@q4q.com

Wednesday 19th of February 2025

Phase 2 - A suggested method would be to include in your policy, a statement that mandates the creation and maintenance of a comprehensive software inventory. This inventory should detail each software component, including its name, version, vendor, installation date, and purpose. The policy should also outline procedures for regularly updating the inventory, such as whenever new software is installed or existing software is updated or removed. Additionally, it should specify who is responsible for maintaining the inventory and how it will be accessed and used for system management and security purposes.

Allow Members to Add Personal Content (disabled)

What is XNETD?

XNETD is a developer of tools that assist in maintaining your network infrastructure. Every network to function properly it needs the right tools — we develop those tools.

Developer:

William Noble

Phone:

814-580-8767

Email:

wnoble2005@gmail.com

Address:

6766 Old Ridge Rd, Fairview, PA 16415

About Me:

whoiswilliamnoble.com

Introduction

Modal Title

Login Modal