PR.DS-08

Does your organization implement hardware integrity verification mechanisms to detect unauthorized modifications or tampering of physical devices?

Explanation

Hardware integrity verification ensures that physical components have not been tampered with or compromised, which could lead to unauthorized access, data breaches, or system failures. This includes mechanisms like secure boot processes, Trusted Platform Modules (TPM), hardware fingerprinting, tamper-evident seals, or cryptographic verification of firmware and hardware components. Evidence could include documentation of hardware integrity verification procedures, screenshots of TPM status reports, logs from secure boot processes, inventory of devices with integrity verification capabilities, or vendor documentation showing hardware security features implemented across your infrastructure.

Context

Function: PR: PROTECT
Category: PR.DS: Data Security
Sub-Category: Integrity checking mechanisms are used to verify hardware integrity

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Neil Cameron

Founder, ResponseHub