This page is classified as INTERNAL.
NIST 800-53 (r4) Control:
The organization retains [Assignment: (M) organization-defined previous versions of baseline configurations of the information system; FedRAMP Assignment (H) the previously approved baseline configuration of IS components] to support rollback.
NIST 800-53 (r4) Supplemental Guidance:
Retaining previous versions of baseline configurations to support rollback may include, for example, hardware, software, firmware, configuration files, and configuration records.
NIST 800-53 (r5) Discussion:
Retaining previous versions of baseline configurations to support rollback include hardware, software, firmware, configuration files, configuration records, and associated documentation.
38North Guidance:
Meets Minimum Requirement:
Processes for managing baseline configurations must include keeping previous versions of baseline configurations of the system to be retained to support rollback.
Best Practice:
TBD
Unofficial FedRAMP Guidance:
TBD
Assessment Evidence:
Copies of previous baseline configuration versions
CSP Implementation Tips:
Amazon Web Services (AWS): TBD
Microsoft Azure: TBD
Google Cloud Platform: TBD