zydronium/manage.get.gov

mirror of https://github.com/cisagov/manage.get.gov.git synced 2025-08-03 16:32:15 +02:00

Add compliance documentation to source control (#116 )

* add initial setup of compliance-trestle

2022-09-14 08:46:43 -04:00

2.2 KiB

Raw Blame History

implementation-status

control-origination

c-not-implemented

c-inherited-cloud-gov

c-inherited-cisa

c-common-control

c-system-specific-control

cm-10 - [catalog] Software Usage Restrictions

Control Statement

[a] Use software and associated documentation in accordance with contract agreements and copyright laws;
[b] Track the use of software and associated documentation protected by quantity licenses to control copying and distribution; and
[c] Control and document the use of peer-to-peer file sharing technology to ensure that this capability is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.

Control guidance

Software license tracking can be accomplished by manual or automated methods, depending on organizational needs. Examples of contract agreements include software license agreements and non-disclosure agreements.

Control assessment-objective

software and associated documentation are used in accordance with contract agreements and copyright laws; the use of software and associated documentation protected by quantity licenses is tracked to control copying and distribution; the use of peer-to-peer file sharing technology is controlled and documented to ensure that peer-to-peer file sharing is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.

What is the solution and how is it implemented?

Implementation a.

Add control implementation description here for item cm-10_smt.a

Implementation b.

Add control implementation description here for item cm-10_smt.b

Implementation c.

Add control implementation description here for item cm-10_smt.c

2.2 KiB Raw Blame History