← Back to catalog
AC-24(1)

Transmit Access Authorization Information

Access Control (AC)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description

Transmit [assignment] using [assignment] to [assignment] that enforce access control decisions.

Discussion

Authorization processes and access control decisions may occur in separate parts of systems or in separate systems. In such instances, authorization information is transmitted securely (e.g., using cryptographic mechanisms) so that timely access control decisions can be enforced at the appropriate locations. To support the access control decisions, it may be necessary to transmit as part of the access authorization information supporting security and privacy attributes. This is because in distributed systems, there are various access control decisions that need to be made, and different entities make these decisions in a serial fashion, each requiring those attributes to make the decisions. Protecting access authorization information ensures that such information cannot be altered, spoofed, or compromised during transmission.

Implementation guidance

No content available.

CSF 2.0 crosswalk

No CSF mappings exist for this control.