Monterey - Ensure Seperate Execution Domain for Processes

Information

The inherent configuration of the macOS _IS_ in compliance as Apple has implemented multiple features Mandatory access controls (MAC), System Integrity Protection (SIP), and application sandboxing.

link:https://support.apple.com/guide/security/system-integrity-protection-secb7ea06b49/web[]

link:https://developer.apple.com/library/archive/documentation/Security/Conceptual/AppSandboxDesignGuide/AboutAppSandbox/AboutAppSandbox.html[]

Solution

The technology inherently meets this requirement. No fix is required.

See Also

https://github.com/usnistgov/macos_security

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-39, CCE|CCE-90903-6

Plugin: Unix

Control ID: 0c3e282262a59c5c43fa7fcfa408f51fa23957897ea424cbd5ae6e5f5c6d9274