← Back to catalog
AC-16(2)
Attribute Value Changes by Authorized Individuals
Access Control (AC)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description
Provide authorized individuals (or processes acting on behalf of individuals) the capability to define or change the value of associated security and privacy attributes.
Discussion
The content or assigned values of attributes can directly affect the ability of individuals to access organizational information. Therefore, it is important for systems to be able to limit the ability to create or modify attributes to authorized individuals.
Implementation guidance
No content available.
CSF 2.0 crosswalk
No CSF mappings exist for this control.