Provide the capability to dynamically isolate [system components to be dynamically isolated from other system components are defined;] from other system components.
Supplemental
The capability to dynamically isolate certain internal system components is useful when it is necessary to partition or separate system components of questionable origin from components that possess greater trustworthiness. Component isolation reduces the attack surface of organizational systems. Isolating selected system components can also limit the damage from successful attacks when such attacks occur.