AC-19(5): Full Device or Container-based Encryption

Control Family:

Access Control

CSF v1.1 References:

Baselines:

  • Moderate
  • High

Previous Version:

Control Statement

Employ [Assignment: full-device encryption, container-based encryption] to protect the confidentiality and integrity of information on [Assignment: organization-defined mobile devices].

Supplemental Guidance

Container-based encryption provides a more fine-grained approach to data and information encryption on mobile devices, including encrypting selected data structures such as files, records, or fields.