SC-36: Distributed Processing and Storage

CSF v2.0 References:

Threats Addressed:

Baselines:

  • Low

    N/A

  • Moderate

    N/A

  • High

    N/A

  • Privacy

    N/A

Previous Version:

Control Statement

Distribute the following processing and storage components across multiple [Assignment: physical locations, logical domains]: [Assignment: organization-defined processing and storage components].

Supplemental Guidance

Distributing processing and storage across multiple physical locations or logical domains provides a degree of redundancy or overlap for organizations. The redundancy and overlap increase the work factor of adversaries to adversely impact organizational operations, assets, and individuals. The use of distributed processing and storage does not assume a single primary processing or storage location. Therefore, it allows for parallel processing and storage.

Control Enhancements

SC-36(1): Polling Techniques

Baseline(s):

(Not part of any baseline)

Employ polling techniques to identify potential faults, errors, or compromises to the following processing and storage components: [Assignment: organization-defined distributed processing and storage components]; and Take the following actions in response to identified faults, errors, or compromises: [Assignment: organization-defined actions].

SC-36(2): Synchronization

Baseline(s):

(Not part of any baseline)

Synchronize the following duplicate systems or system components: [Assignment: organization-defined duplicate systems or system components].