Navigate

SC-50

SC-50: Software-enforced Separation and Policy Enforcement

Implement software-enforced separation and policy enforcement mechanisms between [security domains requiring software-enforced separation and policy enforcement mechanisms are defined;].

Supplemental

System owners may require additional strength of mechanism to ensure domain separation and policy enforcement for specific types of threats and environments of operation.

CIA Levels
Confidentiality	unknown
Integrity	unknown
Availability	unknown

Overlays
CDS - Access, CDS - Multilevel, CDS - Transfer, DAF Baseline

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to SC-50.

Control	Description
AC-3	Enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies.
AC-4	Enforce approved authorizations for controlling the flow of information within the system and between connected systems based on [information flow control policies within the system and between connected systems are defined;].
SA-8	Apply the following systems security and privacy engineering principles in the specification, design, development, implementation, and modification of the system and system components: [one of ].
SC-2	Separate user functionality, including user interface services, from system management functionality.
SC-3	Isolate security functions from nonsecurity functions.
SC-49	Implement hardware-enforced separation and policy enforcement mechanisms between [security domains requiring hardware-enforced separation and policy enforcement mechanisms are defined;].

Enhancements

The controls below (if any) add on to the requirements of SC-50.

Control	Description
No controls

Related CCIs

The CCIs below are tied to SC-50.

CCI	Definition
CCI-004942	Implement software-enforced separation and policy enforcement mechanisms between organization-defined security domains.
CCI-004943	Defines the security domains for implementing software-enforced separation and policy enforcement mechanisms.