9.3: Maintain and Enforce Network-Based URL Filters
CSF v1.1 References:
PF v1.0 References:
Incorporates the following controls from the previous version: 7.4: Maintain and Enforce Network-Based URL Filters, 7.5: Subscribe to URL-Categorization Service, 13.4: Only Allow Access to Authorized Cloud Storage or Email Providers.
Control Statement
Enforce and update network-based URL filters to limit an enterprise asset from connecting to potentially malicious or unapproved websites. Example implementations include category-based filtering, reputation-based filtering, or through the use of block lists. Enforce filters for all enterprise assets.
[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]