Navigate

CCI-002214

CCI-002214 Definition

Employ organization-defined solutions in approved configurations to control the flow of organization-defined information across security domains.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Determine if [AC-04(20)_ODP[01]; solutions in approved configurations to control the flow of information across security domains are defined] are employed to control the flow of [AC-04(20)_ODP[02]; information to be controlled when it flows across security domains is defined] across security domains.

Validation Procedures

Examine: [SELECT FROM: Information flow enforcement policy; information flow control policies; procedures addressing information flow enforcement; system design documentation; system configuration settings and associated documentation; list of solutions in approved configurations; approved configuration baselines; system audit records; system security plan; other relevant documents or records]. Interview: [SELECT FROM: Organizational personnel with information flow enforcement responsibilities; system/network administrators; organizational personnel with information security responsibilities]. Test: [SELECT FROM: Mechanisms implementing information flow enforcement functions].

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002214.

Control	Description
AC-4(20)	Employ [solutions in approved configurations to control the flow of information across security domains are defined;] to control the flow of [information to be controlled when it flows across security domains is defined;] across security domains.