800-53|SC-7(22)

Title

SEPARATE SUBNETS FOR CONNECTING TO DIFFERENT SECURITY DOMAINS

Description

The information system implements separate network addresses (i.e., different subnets) to connect to systems in different security domains.

Supplemental

Decomposition of information systems into subnets helps to provide the appropriate level of protection for network connections to different security domains containing information with different security categories or classification levels.

Reference Item Details

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Category: SYSTEM AND COMMUNICATIONS PROTECTION

Parent Title: BOUNDARY PROTECTION

Family: SYSTEM AND COMMUNICATIONS PROTECTION

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
1.6.3 Create network segmentation using Network Policies	Unix	CIS Kubernetes 1.13 Benchmark v1.4.1 L2

Detections

Analytics