AC-16(7): Consistent Attribute Interpretation

Control Family:

Access Control

Parent Control:

AC-16: Security and Privacy Attributes

CSF v1.1 References:

PR.AC-4
PR.AC-6

Baselines:

(Not part of any baseline)

Previous Version:

NIST Special Publication 800-53 Revision 4:
AC-16(7): Consistent Attribute Interpretation

Control Statement

Provide a consistent interpretation of security and privacy attributes transmitted between distributed system components.

Supplemental Guidance

To enforce security and privacy policies across multiple system components in distributed systems, organizations provide a consistent interpretation of security and privacy attributes employed in access enforcement and flow enforcement decisions. Organizations can establish agreements and processes to help ensure that distributed system components implement attributes with consistent interpretations in automated access enforcement and flow enforcement actions.