1. Home
  2. Mapping Frameworks
  3. NIST 800-53 Home
  4. Development Process, Standards, and Tools

NIST 800-53 SA-15 Mappings

Development tools include programming languages and computer-aided design systems. Reviews of development processes include the use of maturity models to determine the potential effectiveness of such processes. Maintaining the integrity of changes to tools and processes facilitates effective supply chain risk assessment and mitigation. Such integrity requires configuration control throughout the system development life cycle to track authorized changes and prevent unauthorized changes.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
SA-15 Development Process, Standards, and Tools mitigates T1078 Valid Accounts
SA-15 Development Process, Standards, and Tools mitigates T1195.001 Compromise Software Dependencies and Development Tools
SA-15 Development Process, Standards, and Tools mitigates T1078.001 Default Accounts
SA-15 Development Process, Standards, and Tools mitigates T1078.003 Local Accounts
SA-15 Development Process, Standards, and Tools mitigates T1078.004 Cloud Accounts
SA-15 Development Process, Standards, and Tools mitigates T1213.003 Code Repositories
SA-15 Development Process, Standards, and Tools mitigates T1528 Steal Application Access Token
SA-15 Development Process, Standards, and Tools mitigates T1552 Unsecured Credentials
SA-15 Development Process, Standards, and Tools mitigates T1552.001 Credentials In Files
SA-15 Development Process, Standards, and Tools mitigates T1552.004 Private Keys
SA-15 Development Process, Standards, and Tools mitigates T1552.002 Credentials in Registry
SA-15 Development Process, Standards, and Tools mitigates T1552.006 Group Policy Preferences
SA-15 Development Process, Standards, and Tools mitigates T1558.004 AS-REP Roasting
SA-15 Development Process, Standards, and Tools mitigates T1574.002 DLL Side-Loading