SC-15: Collaborative Computing Devices and Applications

CSF v1.1 References:

PF v1.0 References:

Threats Addressed:

Baselines:

  • Low
    • SC-15
  • Moderate
    • SC-15
  • High
    • SC-15
  • Privacy

    N/A

Previous Version:

Control Statement

  1. Prohibit remote activation of collaborative computing devices and applications with the following exceptions: [Assignment: organization-defined exceptions where remote activation is to be allowed]; and
  2. Provide an explicit indication of use to users physically present at the devices.

Supplemental Guidance

Collaborative computing devices and applications include remote meeting devices and applications, networked white boards, cameras, and microphones. The explicit indication of use includes signals to users when collaborative computing devices and applications are activated.

Control Enhancements

SC-15(1): Physical or Logical Disconnect

Baseline(s):

(Not part of any baseline)

Provide [Assignment (one or more): physical, logical] disconnect of collaborative computing devices in a manner that supports ease of use.

SC-15(3): Disabling and Removal in Secure Work Areas

Baseline(s):

(Not part of any baseline)

Disable or remove collaborative computing devices and applications from [Assignment: organization-defined systems or system components] in [Assignment: organization-defined secure work areas].