AC-4(31): Failed Content Transfer Prevention

Control Family:

Access Control

CSF v1.1 References:

Threats Addressed:


(Not part of any baseline)

Info icon.

Control is new to this version of the control set.

Control Statement

When transferring information between different security domains, prevent the transfer of failed content to the receiving domain.

Supplemental Guidance

Content that failed filtering checks can corrupt the system if transferred to the receiving domain.