AC-19(5): Full Device or Container-based Encryption

Control Family:

Access Control

Parent Control:

AC-19: Access Control for Mobile Devices

CSF v1.1 References:

PR.AC-3

Threats Addressed:

Tampering
Information Disclosure

Baselines:

Moderate
High

Previous Version:

NIST Special Publication 800-53 Revision 4:
AC-19(5): Full Device / Container-Based Encryption

Control Statement

Employ [Assignment: full-device encryption, container-based encryption] to protect the confidentiality and integrity of information on [Assignment: organization-defined mobile devices].

Supplemental Guidance

Container-based encryption provides a more fine-grained approach to data and information encryption on mobile devices, including encrypting selected data structures such as files, records, or fields.

Control Statement

Supplemental Guidance

Related Controls

NIST Special Publication 800-53 Revision 5

Critical Security Controls Version 8