Navigate

SC-24

SC-24: Fail in Known State

Fail to a [known system state to which system components fail in the event of a system failure is defined;] for the following failures on the indicated components while preserving [system state information to be preserved in the event of a system failure is defined;] in failure: [types of system failures for which the system components fail to a known state are defined;].

Supplemental

Failure in a known state addresses security concerns in accordance with the mission and business needs of organizations. Failure in a known state prevents the loss of confidentiality, integrity, or availability of information in the event of failures of organizational systems or system components. Failure in a known safe state helps to prevent systems from failing to a state that may cause injury to individuals or destruction to property. Preserving system state information facilitates system restart and return to the operational mode with less disruption of mission and business processes.

CIA Levels
Confidentiality	high
Integrity	high
Availability	unknown

Overlays
DAF Baseline, Int-C

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to SC-24.

Control	Description
CP-2	a: Develop a contingency plan for the system that: 1: Identifies essential mission and business functions and associated contingency requirements; 2: Provides recovery objectives, restoration priorities, and metrics; 3: Addresses contingency roles, responsibilities, assigned individuals with contact information; 4: Addresses maintaining essential mission and business functions despite a system disruption, compromise, or failure; 5: Addresses eventual, full system restoration without deterioration of the controls originally planned and implemented; 6: Addresses the sharing of contingency information; and 7: Is reviewed and approved by [one of ]; b: Distribute copies of the contingency plan to [one of ]; c: Coordinate contingency planning activities with incident handling activities; d: Review the contingency plan for the system [frequency of contingency plan review is defined;]; e: Update the contingency plan to address changes to the organization, system, or environment of operation and problems encountered during contingency plan implementation, execution, or testing; f: Communicate contingency plan changes to [one of ]; g: Incorporate lessons learned from contingency plan testing, training, or actual contingency activities into contingency testing and training; and h: Protect the contingency plan from unauthorized disclosure and modification.
CP-4	a: Test the contingency plan for the system [frequency of testing the contingency plan for the system is defined;] using the following tests to determine the effectiveness of the plan and the readiness to execute the plan: [one of ]. b: Review the contingency plan test results; and c: Initiate corrective actions, if needed.
CP-10	Provide for the recovery and reconstitution of the system to a known state within [one of ] after a disruption, compromise, or failure.
CP-12	When [conditions detected to enter a safe mode of operation are defined;] are detected, enter a safe mode of operation with [restrictions for safe mode of operation are defined;].
SA-8	Apply the following systems security and privacy engineering principles in the specification, design, development, implementation, and modification of the system and system components: [one of ].
SC-7	a: Monitor and control communications at the external managed interfaces to the system and at key internal managed interfaces within the system; b: Implement subnetworks for publicly accessible system components that are [one of "physically"/"logically"] separated from internal organizational networks; and c: Connect to external networks or systems only through managed interfaces consisting of boundary protection devices arranged in accordance with an organizational security and privacy architecture.
SC-22	Ensure the systems that collectively provide name/address resolution service for an organization are fault-tolerant and implement internal and external role separation.
SI-13	a: Determine mean time to failure (MTTF) for the following system components in specific environments of operation: [system components for which mean time to failure (MTTF) should be determined are defined;] ; and b: Provide substitute system components and a means to exchange active and standby components in accordance with the following criteria: [mean time to failure (MTTF) substitution criteria to be used as a means to exchange active and standby components are defined;].

Enhancements

The controls below (if any) add on to the requirements of SC-24.

Control	Description
No controls

Related CCIs

The CCIs below are tied to SC-24.

CCI	Definition
CCI-001190	Fail to an organization-defined known-system state for the list of organization-defined types of system failures on organization-defined system components on the indicated components while preserving organization-defined system state information in failure.
CCI-001191	Defines the known system state the system should fail to in the event of an organization-defined system failure.
CCI-001192	Defines types of system failures for which should fail to an organization-defined known system state.
CCI-001193	Defines system state information that should be preserved in the event of a system failure.
CCI-001665	Preserve organization-defined system state information in the event of a system failure.