NIST 800-53 REV 5 • SYSTEM AND INFORMATION INTEGRITY

SI-8(2)Automatic Updates

Automatically update spam protection mechanisms {{ insert: param, si-08.02_odp }}.

CMMC Practice Mapping

No direct CMMC mapping

NIST 800-171 Mapping

No direct NIST 800-171 mapping

Related Controls

No related controls listed

Supplemental Guidance

Using automated mechanisms to update spam protection mechanisms helps to ensure that updates occur on a regular basis and provide the latest content and protection capabilities.

Practitioner Notes

Spam filters must update their detection databases automatically to catch new spam campaigns as they emerge.

Example 1: Verify that Exchange Online Protection updates its spam filtering intelligence automatically (it does by default as a cloud service). For on-premises solutions, configure automatic signature and rule updates at least every hour.

Example 2: If using a dedicated spam appliance, configure it to pull updated spam signatures, IP reputation lists, and URL databases automatically. Set the update check interval to 15 minutes for real-time protection against emerging campaigns.

More System and Information Integrity Controls

SI-1 Policy and Procedures SI-2 Flaw Remediation SI-2(1) Central Management SI-2(2) Automated Flaw Remediation Status