Navigate

CCI-002401

CCI-002401 Definition

The organization defines the authorized sources from which the information system will allow incoming communications.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed defines and documents the authorized sources from which the information system will allow incoming communications. DoD has determined the authorized sources are not appropriate to define at the Enterprise level.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented authorized sources to ensure the organization being inspected/assessed defines the authorized sources from which the information system will allow incoming communications. DoD has determined the authorized sources are not appropriate to define at the Enterprise level.

Compelling Evidence

1.) Signed and dated document that defines the authorized sources from which the information system will allow incoming communications.

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002401.

Control	Description
SC-7 (11)	The information system only allows incoming communications from [Assignment: organization-defined authorized sources] to be routed to [Assignment: organization-defined authorized destinations].