AC-4(11): Configuration Of Security Policy Filters

Control Family:

Access Control


(Not part of any baseline)

Next Version:

Control Statement

The information system provides the capability for privileged administrators to configure [Assignment: organization-defined security policy filters] to support different security policies.

Supplemental Guidance

For example, to reflect changes in security policies, administrators can change the list of 'dirty words' that security policy mechanisms check in accordance with the definitions provided by organizations.