AC-16(10): Attribute Configuration By Authorized Individuals
Control Family:
Parent Control:
Baselines:
(Not part of any baseline)
Next Version:
- NIST Special Publication 800-53 Revision 5:
- AC-16(10): Attribute Configuration by Authorized Individuals
Control Statement
The information system provides authorized individuals the capability to define or change the type and value of security attributes available for association with subjects and objects.
Supplemental Guidance
The content or assigned values of security attributes can directly affect the ability of individuals to access organizational information. Therefore, it is important for information systems to be able to limit the ability to create or modify security attributes to authorized individuals only.