SC-2(1): Interfaces For Non-Privileged Users

Control Family:

System And Communications Protection

Parent Control:

SC-2: Application Partitioning

Priority:

P1: Implement P1 security controls first.

Threats Addressed:

Elevation of Privilege

Baselines:

(Not part of any baseline)

Next Version:

NIST Special Publication 800-53 Revision 5:
SC-2(1): Interfaces for Non-privileged Users

Control Statement

The information system prevents the presentation of information system management-related functionality at an interface for non-privileged users.

Supplemental Guidance

This control enhancement ensures that administration options (e.g., administrator privileges) are not available to general users (including prohibiting the use of the grey-out option commonly used to eliminate accessibility to such information). Such restrictions include, for example, not presenting administration options until users establish sessions with administrator privileges.