AC-4(11): Configuration Of Security Policy Filters

Control Family:

Access Control

Parent Control:

AC-4: Information Flow Enforcement

Priority:

P1: Implement P1 security controls first.

CSF v1.1 References:

ID.AM-3
PR.AC-5
PR.DS-5
PR.PT-4
DE.AE-1

Baselines:

(Not part of any baseline)

Next Version:

NIST Special Publication 800-53 Revision 5:
AC-4(11): Configuration of Security or Privacy Policy Filters

Control Statement

The information system provides the capability for privileged administrators to configure [Assignment: organization-defined security policy filters] to support different security policies.

Supplemental Guidance

For example, to reflect changes in security policies, administrators can change the list of 'dirty words' that security policy mechanisms check in accordance with the definitions provided by organizations.