← Back to catalog
SC-3(2)

Access and Flow Control Functions

System and Communications Protection (SC)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description

Isolate security functions enforcing access and information flow control from nonsecurity functions and from other security functions.

Discussion

Security function isolation occurs because of implementation. The functions can still be scanned and monitored. Security functions that are potentially isolated from access and flow control enforcement functions include auditing, intrusion detection, and malicious code protection functions.

Implementation guidance

No content available.

CSF 2.0 crosswalk

No CSF mappings exist for this control.