Navigate

SI-7 (11)

SI-7 (11): Confined Environments With Limited Privileges

The organization requires that [Assignment: organization-defined user-installed software] execute in a confined physical or virtual machine environment with limited privileges.

Supplemental

Organizations identify software that may be of greater concern with regard to origin or potential for containing malicious code. For this type of software, user installations occur in confined environments of operation to limit or contain damage from malicious code that may be executed.

CIA Levels
Confidentiality	unknown
Integrity	unknown
Availability	unknown

Overlays
None

Related Controls

The controls below (if any) were marked by NIST as being related to SI-7 (11).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of SI-7 (11).

Control	Description
No controls

Related CCIs

The CCIs below are tied to SI-7 (11).

CCI	Definition
CCI-002730	The organization defines the user-installed software that is to be executed in a confined physical or virtual machine environment with limited privileges.
CCI-002731	The organization requires that organization-defined user-installed software execute in a confined physical or virtual machine environment with limited privileges.