SI-15: Information Output Filtering

Control Family:

System And Information Integrity

Priority:

P0: Security control not selected in any baseline.

Threats Addressed:

Information Disclosure

Baselines:

Low
N/A
Moderate
N/A
High
N/A

Next Version:

NIST Special Publication 800-53 Revision 5:
SI-15: Information Output Filtering

Control Statement

The information system validates information output from [Assignment: organization-defined software programs and/or applications] to ensure that the information is consistent with the expected content.

Supplemental Guidance

Certain types of cyber attacks (e.g., SQL injections) produce output results that are unexpected or inconsistent with the output results that would normally be expected from software programs or applications. This control enhancement focuses on detecting extraneous content, preventing such extraneous content from being displayed, and alerting monitoring tools that anomalous behavior has been discovered.

Control Statement

Supplemental Guidance

Related Controls

NIST Special Publication 800-53 Revision 4