Additional Documents
Reference documents from government agencies and industry organizations that inform the macOS Security Compliance Project.
Government Documents
Section titled “Government Documents”These documents are published by official government agencies and provide standards, guidelines, and requirements for cybersecurity and information assurance.
National Institute of Standards and Technology (NIST)
Section titled “National Institute of Standards and Technology (NIST)”| Document | Title |
|---|---|
| NIST SP 800-53 Rev 5 | Security and Privacy Controls for Information Systems and Organizations |
| NCP Tahoe Checklist | mSCP Guidance for macOS 26 (Tahoe) |
| NIST SP 800-63 | Digital Identity Guidelines |
| NIST SP 800-171 Rev 3 | Protecting Controlled Unclassified Information in Nonfederal Systems |
| NIST SP 800-219 Rev 1 | macOS Security Compliance Project (mSCP) |
Defense Information Systems Agency (DISA)
Section titled “Defense Information Systems Agency (DISA)”| Document | Title |
|---|---|
| macOS 26 STIG | Apple macOS 26 (Tahoe) STIG |
| macOS 15 STIG | Apple macOS 15 (Sequoia) STIG |
| macOS 14 STIG | Apple macOS 14 (Sonoma) STIG |
| macOS 13 STIG | Apple macOS 13 (Ventura) STIG |
Cybersecurity Maturity Model Certification (CMMC)
Section titled “Cybersecurity Maturity Model Certification (CMMC)”| Document | Title |
|---|---|
| CMMC Model Overview v2.0 | Cybersecurity Maturity Model Certification Model Overview |
Committee on National Security Systems (CNSS)
Section titled “Committee on National Security Systems (CNSS)”| Document | Title |
|---|---|
| CNSSI No. 1253 | Security Categorization and Control Selection for National Security Systems |
Germany (BSI)
Section titled “Germany (BSI)”| Document | Title |
|---|---|
| BSI Approved Products (Indigo) | BSI List of Approved Products |
Non-Government Documents
Section titled “Non-Government Documents”These documents are produced by private organizations and industry groups, offering platform-specific guidance and security benchmarks.
| Document | Title |
|---|---|
| Apple Platform Security | Apple Platform Security Guide |
| Apple Platform Deployment | Apple Platform Deployment Guide |
| Apple Platform Certifications | Apple Platform Certifications |
| Profile-Specific Payload Keys | MDM Profile Payload Reference |
Center for Internet Security (CIS)
Section titled “Center for Internet Security (CIS)”| Document | Title |
|---|---|
| CIS macOS 26 Benchmark | CIS Apple macOS 26 (Tahoe) Benchmark v1.0.0 |
| CIS macOS 15 Benchmark | CIS Apple macOS 15 (Sequoia) Benchmark |
Next Steps
Section titled “Next Steps”- Resources - Training and tools
- Vendor Attribution - Vendors implementing mSCP