NIST Special Publication 800 NIST SP 800-171r3
The Security Requirements
NIST SP 800-171r3 (USA) & ITSP.10.171 (Canada)
3.5. Identification and Authentication
3.12. Security Assessment and Monitoring
3.13. System and Communications Protection
3.14. System and Information Integrity
3.16. System and Services Acquisition
3.17. Supply Chain Risk Management
CMMC 3.0 - N/A
CPCSC - N/A
The Security Requirements
03.07.01: Withdrawn
Recategorized as NCO.
03.07.02: Withdrawn
Incorporated into 03.07.04 and 03.07.06.
03.07.03
Incorporated into 03.08.03.
03.07.04: Maintenance Tools
Approving, controlling, monitoring, and reviewing maintenance tools address security-related issues associated with the tools that are used for diagnostic and repair actions on the system. Maintenance tools can include hardware and software diagnostic and test equipment as well as packet sniffers.
03.07.05: Nonlocal Maintenance
Nonlocal maintenance and diagnostic activities are conducted by individuals who communicate through an external or internal network…
03.07.06
Maintenance personnel refers to individuals who perform hardware or software maintenance on the system, while 03.10.01 addresses physical access for individuals whose maintenance duties place them within the physical protection perimeter of the system.