Navigate

CCI-002501

CCI-002501 Definition

The organization reduces the maximum bandwidth for identified covert storage and/or timing channels to organization-defined values.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed reduces the maximum bandwidth for identified covert storage and/or timing channels to values defined in SC-31 (2), CCI 2500.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines any applicable evidence of bandwidth reduction to ensure the organization being inspected/assessed reduces the maximum bandwidth for identified covert storage and/or timing channels to values defined in SC-31 (2), CCI 2500.

Compelling Evidence

1.) Signed and dated Standard Operating Procedure (SOP). 2.) Concept of Operations (CONOP). 3.) System Configuration policy (reference "bandwidth" section).

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002501.

Control	Description
SC-31 (2)	The organization reduces the maximum bandwidth for identified covert [Selection (one or more); storage; timing] channels to [Assignment: organization-defined values].