SC-15: Collaborative Computing Devices and Applications
Control Family:
CSF v1.1 References:
PF v1.0 References:
Threats Addressed:
Baselines:
- Low
- SC-15
- Moderate
- SC-15
- High
- SC-15
- Privacy
N/A
Previous Version:
- NIST Special Publication 800-53 Revision 4:
- SC-15: Collaborative Computing Devices
Control Statement
- Prohibit remote activation of collaborative computing devices and applications with the following exceptions: [Assignment: organization-defined exceptions where remote activation is to be allowed]; and
- Provide an explicit indication of use to users physically present at the devices.
Supplemental Guidance
Collaborative computing devices and applications include remote meeting devices and applications, networked white boards, cameras, and microphones. The explicit indication of use includes signals to users when collaborative computing devices and applications are activated.
Control Enhancements
SC-15(1): Physical or Logical Disconnect
Baseline(s):
Provide [Assignment (one or more): physical, logical] disconnect of collaborative computing devices in a manner that supports ease of use.
SC-15(3): Disabling and Removal in Secure Work Areas
Baseline(s):
Disable or remove collaborative computing devices and applications from [Assignment: organization-defined systems or system components] in [Assignment: organization-defined secure work areas].
SC-15(4): Explicitly Indicate Current Participants
Baseline(s):
Provide an explicit indication of current participants in [Assignment: organization-defined online meetings and teleconferences].