Cyber Resilience

NIST 800-53 r5 · Controls catalogue · Family SI

SI-6Security and Privacy Function Verification

Verify the correct operation of {{ insert: param, si-6_prm_1 }}; Perform the verification of the functions specified in SI-6a {{ insert: param, si-06_odp.03 }}; Alert {{ insert: param, si-06_odp.06 }} to failed security and privacy verification tests; and {{ insert: param, si-06_odp.07 }} when anomalies are discovered.

Last updated: 04 July 2026 00:28 UTC

Implementations targeting this control (0)

ATT&CK techniques this control mitigates (0)

Weaknesses this control addresses (6)AI

CWEs ranked by how often they appear in real CVEs. The rationale describes how this control reduces exploitability of each weakness class.

CWE Name CVEs Why this control addresses it
CWE-754Improper Check for Unusual or Exceptional Conditions730Anomaly detection and alerting implement checks for unusual conditions that would otherwise go unnoticed.
CWE-693Protection Mechanism Failure613Explicit verification and alerting detect when protection mechanisms are not functioning, limiting undetected bypasses.
CWE-703Improper Check or Handling of Exceptional Conditions150The required verification process supplies the missing checks for exceptional conditions affecting security functions.
CWE-440Expected Behavior Violation41Verification of security function operation directly detects deviations from expected behavior.
CWE-636Not Failing Securely ('Failing Open')35Failed verification tests trigger alerts, reducing the window for exploitation when systems fail open.
CWE-684Incorrect Provision of Specified Functionality27Periodic checks confirm that specified security and privacy functions are actually provided and operating.

Top CVEs where this control is the strongest mitigation

CVE Risk CVSS EPSS Match
CVE-2026-47485.57.50.0025good
CVE-2026-267425.58.10.0027good
CVE-2026-334717.09.60.0022good
CVE-2026-296497.09.80.0045good
CVE-2026-338077.09.10.0043good
CVE-2026-55015.58.10.0018partial
CVE-2026-408805.58.10.0026partial
CVE-2026-227535.57.50.0025partial
CVE-2026-28498 UPD5.57.50.0023good
CVE-2026-350425.57.50.0015good
CVE-2026-248515.58.80.0031good
CVE-2026-318305.57.50.0022good

Other controls in family SI

SI-1 SI-10 SI-11 SI-12 SI-13 SI-14 SI-15 SI-16 SI-17 SI-18 SI-19 SI-2 SI-20 SI-21 SI-22 SI-23 SI-3 SI-4 SI-5 SI-7 SI-8 SI-9