Navigate

AC-16 (9)

AC-16 (9): Attribute Reassignment

The organization ensures that security attributes associated with information are reassigned only via re-grading mechanisms validated using [Assignment: organization-defined techniques or procedures].

Supplemental

Validated re-grading mechanisms are employed by organizations to provide the requisite levels of assurance for security attribute reassignment activities. The validation is facilitated by ensuring that re-grading mechanisms are single purpose and of limited function. Since security attribute reassignments can affect security policy enforcement actions (e.g., access/flow enforcement decisions), using trustworthy re-grading mechanisms is necessary to ensure that such mechanisms perform in a consistent/correct mode of operation.

CIA Levels
Confidentiality	unknown
Integrity	unknown
Availability	unknown

Overlays
Cross Domain (Access), Cross Domain (Multilevel), Cross Domain (Transfer)

Related Controls

The controls below (if any) were marked by NIST as being related to AC-16 (9).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of AC-16 (9).

Control	Description
No controls

Related CCIs

The CCIs below are tied to AC-16 (9).

CCI	Definition
CCI-002303	The organization defines the techniques or procedures to be employed to validate re-grading mechanisms.
CCI-002304	The organization ensures security attributes associated with information are reassigned only via re-grading mechanisms validated using organization-defined techniques or procedures.