← Back to catalog
AC-17(4)
Privileged Commands and Access
Access Control (AC)
Baselines
Low · Not includedModerate · IncludedHigh · Included
Description
Authorize the execution of privileged commands and access to security-relevant information via remote access only in a format that provides assessable evidence and for the following needs: [assignment] ; and Document the rationale for remote access in the security plan for the system.
Discussion
Remote access to systems represents a significant potential vulnerability that can be exploited by adversaries. As such, restricting the execution of privileged commands and access to security-relevant information via remote access reduces the exposure of the organization and the susceptibility to threats by adversaries to the remote access capability.
Implementation guidance
No content available.
CSF 2.0 crosswalk
No CSF mappings exist for this control.