Title
CODE EXECUTION IN PROTECTED ENVIRONMENTS
Description
The organization allows execution of binary or machine-executable code obtained from sources with limited or no warranty and without the provision of source code only in confined physical or virtual machine environments and with the explicit approval of [Assignment: organization-defined personnel or roles].
Supplemental
This control enhancement applies to all sources of binary or machine-executable code including, for example, commercial software/firmware and open source software.
Reference Item Details
Category: SYSTEM AND INFORMATION INTEGRITY
Parent Title: SOFTWARE, FIRMWARE, AND INFORMATION INTEGRITY
Family: SYSTEM AND INFORMATION INTEGRITY