SC-7(20): Dynamic Isolation and Segregation
(Not part of any baseline)
- NIST Special Publication 800-53 Revision 4:
- SC-7(20): Dynamic Isolation / Segregation
Provide the capability to dynamically isolate [Assignment: organization-defined system components] from other system components.
The capability to dynamically isolate certain internal system components is useful when it is necessary to partition or separate system components of questionable origin from components that possess greater trustworthiness. Component isolation reduces the attack surface of organizational systems. Isolating selected system components can also limit the damage from successful attacks when such attacks occur.