Navigate

AC-19(5)

AC-19(5): Full Device or Container-based Encryption

Employ [one of "full-device encryption"/"container-based encryption"] to protect the confidentiality and integrity of information on [mobile devices on which to employ encryption are defined;].

Supplemental

Container-based encryption provides a more fine-grained approach to data and information encryption on mobile devices, including encrypting selected data structures such as files, records, or fields.

CIA Levels
Confidentiality	low
Integrity	low
Availability	unknown

Overlays
CMMC, Privacy (high), Privacy (low), Privacy (moderate)

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to AC-19(5).

Control	Description
SC-12	Establish and manage cryptographic keys when cryptography is employed within the system in accordance with the following key management requirements: [requirements for key generation, distribution, storage, access, and destruction are defined;].
SC-13	a: Determine the [cryptographic uses are defined;] ; and b: Implement the following types of cryptography required for each specified cryptographic use: [types of cryptography for each specified cryptographic use are defined;].
SC-28	Protect the [one or more of "confidentiality"/"integrity"] of the following information at rest: [information at rest requiring protection is defined;].

Enhancements

The controls below (if any) add on to the requirements of AC-19(5).

Control	Description
No controls

Related CCIs

The CCIs below are tied to AC-19(5).

CCI	Definition
CCI-002329	Defines the mobile devices that are to employ full-device or container encryption to protect the confidentiality and integrity of the information on the device.
CCI-002330	Employ full-device encryption or container encryption to protect the confidentiality of information on organization-defined mobile devices.
CCI-002331	Employ full-device encryption or container encryption to protect the integrity of information on organization-defined mobile devices.