800-53|AC-4(15)

Title

DETECTION OF UNSANCTIONED INFORMATION

Description

The information system, when transferring information between different security domains, examines the information for the presence of [Assignment: organized-defined unsanctioned information] and prohibits the transfer of such information in accordance with the [Assignment: organization-defined security policy].

Supplemental

Detection of unsanctioned information includes, for example, checking all information to be transferred for malicious code and dirty words.

Reference Item Details

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Related: SI-3

Category: ACCESS CONTROL

Parent Title: INFORMATION FLOW ENFORCEMENT

Family: ACCESS CONTROL

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
DTBC-0020 - Google Data Synchronization must be disabled.	Windows	DISA STIG Google Chrome v2r9
DTBC-0023 - Cloud print sharing must be disabled.	Windows	DISA STIG Google Chrome v2r9
SP13-00-000040 - SharePoint must provide the ability to prohibit the transfer of unsanctioned information in accordance with security policy.	Windows	DISA STIG SharePoint 2013 v2r3

Detections

Analytics