Navigate

AC-16(6)

AC-16(6): Maintenance of Attribute Association

Require personnel to associate and maintain the association of [one of ] with [one of ] in accordance with [one of ].

Supplemental

Maintaining attribute association requires individual users (as opposed to the system) to maintain associations of defined security and privacy attributes with subjects and objects.

CIA Levels
Confidentiality	moderate
Integrity	moderate
Availability	unknown

Overlays
Classified, DAF Baseline, Int-A, Int-B, Int-C

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to AC-16(6).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of AC-16(6).

Control	Description
No controls

Related CCIs

The CCIs below are tied to AC-16(6).

CCI	Definition
CCI-002291	Defines the security policies to be followed by personnel when associating organization-defined security attributes with organization-defined subjects and objects.
CCI-002292	Defines the security attributes which are to be associated with organization-defined subjects and objects.
CCI-002293	Defines the subjects to be associated, and that association maintained, with organization-defined security attributes in accordance with organization-defined security policies.
CCI-002294	Defines the objects to be associated, and that association maintained, with organization-defined security attributes in accordance with organization-defined security policies.
CCI-002295	Require personnel to associate organization-defined security attributes with organization-defined subjects in accordance with organization-defined security policies.
CCI-002296	Require personnel to associate organization-defined security attributes with organization-defined objects in accordance with organization-defined security policies.
CCI-002297	Require personnel to maintain the association of organization-defined security attributes with organization-defined subjects in accordance with organization-defined security policies.
CCI-002298	Require personnel to maintain the association of organization-defined security attributes with organization-defined objects in accordance with organization-defined security policies.
CCI-003730	Defines the privacy policies to be followed by personnel when associating organization-defined privacy attributes with organization-defined subjects and objects.
CCI-003731	Defines the privacy attributes which are to be associated with organization-defined subjects and objects.
CCI-003732	Defines the subjects to be associated, and that association maintained, with organization-defined privacy attributes in accordance with organization-defined privacy policies.
CCI-003733	Defines the objects to be associated, and that association maintained, with organization-defined privacy attributes in accordance with organization-defined privacy policies.
CCI-003734	Require personnel to associate organization-defined privacy attributes with organization-defined subjects in accordance with organization-defined privacy policies.
CCI-003735	Require personnel to associate organization-defined privacy attributes with organization-defined objects in accordance with organization-defined privacy policies.
CCI-003736	Require personnel to maintain the association of organization-defined privacy attributes with organization-defined subjects in accordance with organization-defined privacy policies.
CCI-003737	Require personnel to maintain the association of organization-defined privacy attributes with organization-defined objects in accordance with organization-defined privacy policies.