SC-49: Hardware-enforced Separation and Policy Enforcement

CSF v2.0 References:

Threats Addressed:

Baselines:

  • Low

    N/A

  • Moderate

    N/A

  • High

    N/A

  • Privacy

    N/A

Info icon.

Control is new to this version of the control set.

Control Statement

Implement hardware-enforced separation and policy enforcement mechanisms between [Assignment: organization-defined security domains].

Supplemental Guidance

System owners may require additional strength of mechanism and robustness to ensure domain separation and policy enforcement for specific types of threats and environments of operation. Hardware-enforced separation and policy enforcement provide greater strength of mechanism than software-enforced separation and policy enforcement.