NIST 800-53 REV 5 • PHYSICAL AND ENVIRONMENTAL PROTECTION

PE-3(5)Tamper Protection

Employ {{ insert: param, pe-03.05_odp.01 }} to {{ insert: param, pe-03.05_odp.02 }} physical tampering or alteration of {{ insert: param, pe-03.05_odp.03 }} within the system.

CMMC Practice Mapping

No direct CMMC mapping

NIST 800-171 Mapping

No direct NIST 800-171 mapping

Related Controls

Supplemental Guidance

Organizations can implement tamper detection and prevention at selected hardware components or implement tamper detection at some components and tamper prevention at other components. Detection and prevention activities can employ many types of anti-tamper technologies, including tamper-detection seals and anti-tamper coatings. Anti-tamper programs help to detect hardware alterations through counterfeiting and other supply chain-related risks.

Practitioner Notes

Tamper protection detects or prevents physical tampering with your hardware. This could mean tamper-evident seals, intrusion detection switches on server cases, or other mechanisms that alert you when someone opens or modifies equipment.

Example 1: Apply tamper-evident seals (serialized security tape or holographic stickers) to server cases, network equipment, and cable connections. During regular inspections, check that seals are intact and serial numbers match. Investigate and document any broken seals immediately.

Example 2: Enable chassis intrusion detection in server BIOS/UEFI settings (available on most Dell, HP, and Lenovo servers). Configure the server to log or alert when the chassis is opened. Forward these alerts to your monitoring system for investigation.

More Physical and Environmental Protection Controls

PE-1 Policy and Procedures PE-2 Physical Access Authorizations PE-2(1) Access by Position or Role PE-2(2) Two Forms of Identification