Controls

Group	Name	Title	CIA
AC	AC-1	Access Control Policy And Procedures	LLL
AC	AC-2	Account Management	LL-
AC	AC-3	Access Enforcement	LL-
AC	AC-4	Information Flow Enforcement	MM-
AC	AC-5	Separation Of Duties	LL-
AC	AC-6	Least Privilege	LL-
AC	AC-7	Unsuccessful Logon Attempts	LLL
AC	AC-8	System Use Notification	LL-
AC	AC-9	Previous Logon (Access) Notification	---
AC	AC-10	Concurrent Session Control	MMM
AC	AC-11	Session Lock	LL-
AC	AC-12	Session Termination	MM-
AC	AC-14	Permitted Actions Without Identification Or Authentication	LL-
AC	AC-16	Security Attributes	MM-
AC	AC-17	Remote Access	LL-
AC	AC-18	Wireless Access	LL-
AC	AC-19	Access Control For Mobile Devices	LL-
AC	AC-20	Use Of External Information Systems	LL-
AC	AC-21	Information Sharing	M--
AC	AC-22	Publicly Accessible Content	L--
AC	AC-23	Data Mining Protection	M--
AC	AC-24	Access Control Decisions	---
AC	AC-25	Reference Monitor	---
AP	AP-1	Authority to Collect	---
AP	AP-2	Purpose Specification	---
AR	AR-1	Governance and Privacy Program	---
AR	AR-2	Privacy Impact and Risk Assessment	---
AR	AR-3	Privacy Requirements for Contractors and Service Providers	---
AR	AR-4	Privacy Monitoring and Auditing	---
AR	AR-5	Privacy Awareness and Training	---