Navigate

CCI-002300

CCI-002300 Definition

The organization defines the techniques or technologies to be implemented when associating security attributes with information.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed defines and documents the techniques or technologies to be implemented when associating security attributes with information. DoD has determined the technique or technologies are not appropriate to define at the Enterprise level.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented techniques and technologies to ensure the organization being inspected/assessed defines the techniques or technologies to be implemented when associating security attributes with information. DoD has determined the technique or technologies are not appropriate to define at the Enterprise level.

Compelling Evidence

1.) Signed and dated documentation that documents organization's techniques and technologies. 2.) Signed and dated documentation that describes how the site defines the techniques or technologies to be implemented when associating security attributes with information.

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002300.

Control	Description
AC-16 (8)	The information system implements [Assignment: organization-defined techniques or technologies] with [Assignment: organization-defined level of assurance] in associating security attributes to information.