Navigate

MP-6 (8)

MP-6 (8): Remote Purging / Wiping Of Information

The organization provides the capability to purge/wipe information from [Assignment: organization-defined information systems, system components, or devices] either remotely or under the following conditions: [Assignment: organization-defined conditions].

Supplemental

This control enhancement protects data/information on organizational information systems, system components, or devices (e.g., mobile devices) if such systems, components, or devices are obtained by unauthorized individuals. Remote purge/wipe commands require strong authentication to mitigate the risk of unauthorized individuals purging/wiping the system/component/device. The purge/wipe function can be implemented in a variety of ways including, for example, by overwriting data/information multiple times or by destroying the key necessary to decrypt encrypted data.

CIA Levels
Confidentiality	unknown
Integrity	unknown
Availability	unknown

Overlays
NC3, Privacy (High), Privacy (Mod)

Related Controls

The controls below (if any) were marked by NIST as being related to MP-6 (8).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of MP-6 (8).

Control	Description
No controls

Related CCIs

The CCIs below are tied to MP-6 (8).

CCI	Definition
CCI-002575	The organization defines information systems, system components, or devices from which information is to be purged/wiped, either remotely or under the organization-defined conditions.
CCI-002576	The organization defines conditions under which information from organization-defined information systems, system components, or devices should be purged/wiped.
CCI-002577	The organization provides the capability to purge/wipe information from organization-defined information systems, system components, or devices either remotely or under organization-defined conditions.