← Back to catalog
AC-17(4)

Privileged Commands and Access

Access Control (AC)
Baselines
Low · Not includedModerate · IncludedHigh · Included
Description

Authorize the execution of privileged commands and access to security-relevant information via remote access only in a format that provides assessable evidence and for the following needs: [assignment] ; and Document the rationale for remote access in the security plan for the system.

Discussion

Remote access to systems represents a significant potential vulnerability that can be exploited by adversaries. As such, restricting the execution of privileged commands and access to security-relevant information via remote access reduces the exposure of the organization and the susceptibility to threats by adversaries to the remote access capability.

Implementation guidance

No content available.

CSF 2.0 crosswalk

No CSF mappings exist for this control.