SC-18(1): Identify Unacceptable Code / Take Corrective Actions

Control Family:

System And Communications Protection

Parent Control:

SC-18: Mobile Code

Priority:

P2: Implement P2 security controls after implementation of P1 controls.

CSF v1.1 References:

DE.CM-5

Threats Addressed:

Tampering

Baselines:

(Not part of any baseline)

Next Version:

NIST Special Publication 800-53 Revision 5:
SC-18(1): Identify Unacceptable Code and Take Corrective Actions

Control Statement

The information system identifies [Assignment: organization-defined unacceptable mobile code] and takes [Assignment: organization-defined corrective actions].

Supplemental Guidance

Corrective actions when unacceptable mobile code is detected include, for example, blocking, quarantine, or alerting administrators. Blocking includes, for example, preventing transmission of word processing files with embedded macros when such macros have been defined to be unacceptable mobile code.