NIST 800-53 Rev. 5

AC
AT
AU
CA
CM
CP
IA
IR
MA
MP
PE
PL
PM
PS
PT
RA
SA
SC
SI
SR
IA-1
IA-2
IA-2(1)
IA-2(2)
IA-2(11)
IA-2(3)
IA-2(5)
IA-2(6)
IA-2(4)
IA-2(8)
IA-2(7)
IA-2(10)
IA-2(9)
IA-2(12)
IA-2(13)
IA-3
IA-3(1)
IA-3(2)
IA-3(3)
IA-3(4)
IA-4
IA-4(1)
IA-4(2)
IA-4(3)
IA-4(4)
IA-4(5)
IA-4(6)
IA-4(7)
IA-4(8)
IA-4(9)
IA-5
IA-5(1)
IA-5(2)
IA-5(11)
IA-5(3)
IA-5(5)
IA-5(6)
IA-5(7)
IA-5(8)
IA-5(9)
IA-5(10)
IA-5(4)
IA-5(12)
IA-5(13)
IA-5(14)
IA-5(15)
IA-5(16)
IA-5(17)
IA-5(18)
IA-6
IA-7
IA-8
IA-8(1)
IA-8(2)
IA-8(3)
IA-8(4)
IA-8(5)
IA-8(6)
IA-9
IA-9(1)
IA-9(2)
IA-10
IA-11
IA-12
IA-12(1)
IA-12(2)
IA-12(3)
IA-12(4)
IA-12(5)
IA-12(6)

IA-5(16): Authenticator Management | In-person or Trusted External Party Authenticator Issuance

Control Text:

Require that the issuance of [Assignment: organization-defined types of and/or specific authenticators] be conducted [Selection: in person; by a trusted external party] before [Assignment: organization-defined registration authority] with authorization by [Assignment: organization-defined personnel or roles].

Issuing authenticators in person or by a trusted external party enhances and reinforces the trustworthiness of the identity proofing process.

Related Controls