Navigate

CCI-001558

CCI-001558 Definition

Defines the security functions (deployed in hardware, software, and firmware) for which access must be authorized.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

DoD has defined the security functions as all functions not publicly accessible.

Validation Procedures

The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the security functions as all functions not publicly accessible.

Compelling Evidence

Automatically compliant

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001558.

Control	Description
AC-6(1)	The organization explicitly authorizes access to [organization-defined security functions (deployed in hardware, software, and firmware) and security-relevant information].