SC-7(15): Networked Privileged Accesses

CSF v1.1 References:

Baselines:

(Not part of any baseline)

Previous Version:

Control Statement

Route networked, privileged accesses through a dedicated, managed interface for purposes of access control and auditing.

Supplemental Guidance

Privileged access provides greater accessibility to system functions, including security functions. Adversaries attempt to gain privileged access to systems through remote access to cause adverse mission or business impacts, such as by exfiltrating information or bringing down a critical system capability. Routing networked, privileged access requests through a dedicated, managed interface further restricts privileged access for increased access control and auditing.