Navigate

AC-4(11)

AC-4(11): Configuration of Security Policy Filters

The information system provides the capability for privileged administrators to configure [organization-defined security policy filters] to support different security policies.

Supplemental

For example, to reflect changes in security policies, administrators can change the list of “dirty words” that security policy mechanisms check in accordance with the definitions provided by organizations.

CIA Levels
Confidentiality	unknown
Integrity	unknown
Availability	unknown

Overlays
None

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to AC-4(11).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of AC-4(11).

Control	Description
No controls

Related CCIs

The CCIs below are tied to AC-4(11).

CCI	Definition
CCI-000035	Provide the capability for privileged administrators to configure the organization-defined security or privacy policy filters to support different security or privacy policies.
CCI-001554	Defines the security or privacy policy filters that privileged administrators have the capability to configure.