EMB
Embedded Technology
19 controls
Provide additional scrutiny to reduce the risks associated with embedded technology, based on the potential damages posed from malicious use of the technology.
| SCF # | Control Name | Weight |
|---|---|---|
| EMB-01 | Embedded Technology Security Program | 10 — Critical |
| EMB-02 | Internet of Things (IOT) | 9 — Critical |
| EMB-03 | Operational Technology (OT) | 9 — Critical |
| EMB-04 | Interface Security | 4 — Medium |
| EMB-05 | Embedded Technology Configuration Monitoring | 6 — Medium |
| EMB-06 | Prevent Alterations | 6 — Medium |
| EMB-07 | Embedded Technology Maintenance | 6 — Medium |
| EMB-08 | Resilience To Outages | 2 — Low |
| EMB-09 | Power Level Monitoring | 4 — Medium |
| EMB-10 | Embedded Technology Reviews | 8 — High |
| EMB-11 | Message Queuing Telemetry Transport (MQTT) Security | 7 — High |
| EMB-12 | Restrict Communications | 8 — High |
| EMB-13 | Authorized Communications | 8 — High |
| EMB-14 | Operating Environment Certification | 9 — Critical |
| EMB-15 | Safety Assessment | 9 — Critical |
| EMB-16 | Certificate-Based Authentication | 5 — Medium |
| EMB-17 | Chip-To-Cloud Security | 6 — Medium |
| EMB-18 | Real-Time Operating System (RTOS) Security | 5 — Medium |
| EMB-19 | Safe Operations | 9 — Critical |
The Secure Controls Framework (SCF) is maintained by SCF Council. Use of SCF content is subject to the SCF Terms & Conditions.