SC-42(1): Reporting to Authorized Individuals or Roles

Control Family:

System and Communications Protection

Parent Control:

SC-42: Sensor Capability and Data

Threats Addressed:

Information Disclosure

Baselines:

(Not part of any baseline)

Previous Version:

NIST Special Publication 800-53 Revision 4:
SC-42(1): Reporting To Authorized Individuals Or Roles

Control Statement

Verify that the system is configured so that data or information collected by the [Assignment: organization-defined sensors] is only reported to authorized individuals or roles.

Supplemental Guidance

In situations where sensors are activated by authorized individuals, it is still possible that the data or information collected by the sensors will be sent to unauthorized entities.