SI-3(4): Updates Only By Privileged Users

Control Family:

System And Information Integrity

Parent Control:

SI-3: Malicious Code Protection

Priority:

P1: Implement P1 security controls first.

CSF v1.1 References:

Threats Addressed:

Baselines:

(Not part of any baseline)

Next Version:

NIST Special Publication 800-53 Revision 5:
SI-3(4): Updates Only by Privileged Users

Control Statement

The information system updates malicious code protection mechanisms only when directed by a privileged user.

Supplemental Guidance

This control enhancement may be appropriate for situations where for reasons of security or operational continuity, updates are only applied when selected/approved by designated organizational personnel.