14.3: Disable Workstation to Workstation Communication

CSF v1.1 References:

PF v1.0 References:

Threats Addressed:

Group:

Info icon.

The next version of the control set incorporates all or part of this control into: 4.1: Establish and Maintain a Secure Configuration Process.

Control Statement

Disable all workstation-to-workstation communication to limit an attacker’s ability to move laterally and compromise neighboring systems, through technologies such as Private VLANs or micro segmentation.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]