SC-7(13): Isolation of Security Tools, Mechanisms, and Support Components
(Not part of any baseline)
- NIST Special Publication 800-53 Revision 4:
- SC-7(13): Isolation Of Security Tools / Mechanisms / Support Components
Isolate [Assignment: organization-defined information security tools, mechanisms, and support components] from other internal system components by implementing physically separate subnetworks with managed interfaces to other components of the system.
Physically separate subnetworks with managed interfaces are useful in isolating computer network defenses from critical operational processing networks to prevent adversaries from discovering the analysis and forensics techniques employed by organizations.