IVS-06: Network Security

Control Family:

Infrastructure & Virtualization Security

CSF v1.1 References:

PR.AC-3
PR.AC-5
PR.DS-5
PR.PT-3
PR.PT-4
DE.CM-1

PF v1.0 References:

PR.AC-P3
PR.AC-P5
PR.DS-P5
PR.PT-P2
PR.PT-P3

Threats Addressed:

Lateral Movement

Control Statement

Network environments and virtual instances shall be designed and configured to restrict and monitor traffic between trusted and untrusted connections. These configurations shall be reviewed at least annually, and supported by a documented justification for use for all allowed services, protocols, ports, and by compensating controls.

Control Statement

Related Controls

NIST Special Publication 800-53 Revision 5

NIST Special Publication 800-53 Revision 4