Navigate

CCI-002232

CCI-002232 Definition

The organization defines software that is restricted from executing at a higher privilege than users executing the software.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

DoD has defined the software as any software except software explicitly documented.

Validation Procedures

The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the software as any software except software explicitly documented.

Compelling Evidence

Automatically compliant

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002232.

Control	Description
AC-6 (8)	The information system prevents [Assignment: organization-defined software] from executing at higher privilege levels than users executing the software.