AC-4(10): Enable / Disable Security Policy Filters

Control Family:

Access Control

Parent Control:

AC-4: Information Flow Enforcement

Priority:

P1: Implement P1 security controls first.

CSF v1.1 References:

ID.AM-3
PR.AC-5
PR.DS-5
PR.PT-4
DE.AE-1

Baselines:

(Not part of any baseline)

Next Version:

NIST Special Publication 800-53 Revision 5:
AC-4(10): Enable and Disable Security or Privacy Policy Filters

Control Statement

The information system provides the capability for privileged administrators to enable/disable [Assignment: organization-defined security policy filters] under the following conditions: [Assignment: organization-defined conditions].

Supplemental Guidance

For example, as allowed by the information system authorization, administrators can enable security policy filters to accommodate approved data types.