System and Communications Protection (SC)
(a) Prevent the exfiltration of information; and (b) Conduct exfiltration tests [Assignment: organization-defined frequency].
System and Communications Protection (SC)
Only allow incoming communications from [Assignment: organization-defined authorized sources] to be routed to [Assignment: organization-defined authorized destinations].
System and Communications Protection (SC)
Implement [Assignment: organization-defined host-based boundary protection mechanisms] at [Assignment: organization-defined system components].
System and Communications Protection (SC)
Isolate [Assignment: organization-defined information security tools, mechanisms, and support components] from other internal system components by implementing physically separate subnetworks with managed interfaces to other components of the system.
System and Communications Protection (SC)
Protect against unauthorized physical connections at [Assignment: organization-defined managed interfaces].
System and Communications Protection (SC)
Route networked, privileged accesses through a dedicated, managed interface for purposes of access control and auditing.
System and Communications Protection (SC)
Prevent the discovery of specific system components that represent a managed interface.
System and Communications Protection (SC)
Enforce adherence to protocol formats.
System and Communications Protection (SC)
Level N/A
Prevent systems from entering unsecure states in the event of an operational failure of a boundary protection device.
System and Communications Protection (SC)
Block inbound and outbound communications traffic between [Assignment: organization-defined communication clients] that are independently configured by end users and external service providers.
