CCI-002073

The organization defines the boundary protection device to be used to connect organization-defined unclassified, national security systems to an external network.

Implementation Guidance

The organization being inspected/assessed defines and documents the boundary protection device to be used to connect organization-defined unclassified, national security systems to an external network. DoD has determined the boundary protection device is not appropriate to define at the Enterprise level.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented boundary protection device to ensure the organization being inspected/assessed defines the boundary protection device to be used to connect organization-defined unclassified, national security systems to an external network. DoD has determined the boundary protection device is not appropriate to define at the Enterprise level.

Compelling Evidence

1.) Signed and dated Security Assessment Plan or Interconnection Security Agreement documenting that boundary protection is used to connect to organization-defined unclassified and NSS to an external network.

The controls below (if any) were marked by NIST as being related to CCI-002073.