Access Control (AC)
When transferring information between different security domains, examine the information for the presence of [Assignment: organization-defined unsanctioned information] and prohibit the transfer of such information in accordance with the [Assignment: organization-defined security or privacy policy].
Access Control (AC)
[Withdrawn: Incorporated into SI-4.]
Access Control (AC)
Uniquely identify and authenticate source and destination points by [Selection (one or more): organization; system; application; service; individual] for information transfer.
Access Control (AC)
[Withdrawn: Incorporated into AC-3(10).]
Access Control (AC)
When transferring information between different security domains, implement [Assignment: organization-defined security or privacy policy filters] on metadata.
Access Control (AC)
Employ [Assignment: organization-defined solutions in approved configurations] to control the flow of [Assignment: organization-defined information] across security domains.
Access Control (AC)
Separate information flows logically or physically using [Assignment: organization-defined mechanisms and/or techniques] to accomplish [Assignment: organization-defined required separations by types of information].
Access Control (AC)
Provide access from a single device to computing platforms, applications, or data residing in multiple different security domains, while preventing information flow between the different security domains.
Access Control (AC)
When transferring information between different security domains, modify non-releasable information by implementing [Assignment: organization-defined modification action].
Access Control (AC)
When transferring information between different security domains, parse incoming data into an internal normalized format and regenerate the data to be consistent with its intended specification.
