Navigate

CCI-002482

CCI-002482 Definition

The organization defines the concealment and misdirection techniques employed for organization-defined information systems to confuse and mislead adversaries.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed defines and documents the concealment and misdirection techniques employed for organization-defined information systems to confuse and mislead adversaries. DoD has determined the concealment and misdirection techniques are not appropriate to define at the Enterprise level.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented concealment and misdirection techniques to ensure the organization being inspected/assessed defines the concealment and misdirection techniques employed for organization-defined information systems to confuse and mislead adversaries.. DoD has determined the concealment and misdirection techniques are not appropriate to define at the Enterprise level.

Compelling Evidence

1.) Signed and dated System Security Plan (SSP) document (reference "security techniques and processes" section).

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002482.

Control	Description
SC-30	The organization employs [Assignment: organization-defined concealment and misdirection techniques] for [Assignment: organization-defined information systems] at [Assignment: organization-defined time periods] to confuse and mislead adversaries.