System and Communications Protection (SC)
Implement anti-spoofing mechanisms to prevent adversaries from falsifying the security attributes indicating the successful application of the security process.
System and Communications Protection (SC)
Implement [Assignment: organization-defined mechanisms or techniques] to bind security and privacy attributes to transmitted information.
System and Communications Protection (SC)
Level N/A
a. Issue public key certificates under an [Assignment: organization-defined certificate policy] or obtain public key certificates from an approved service provider; and b. Include only approved trust anchors in trust stores or certificate stores managed by the organization.
System and Communications Protection (SC)
Level N/A
a. Define acceptable and unacceptable mobile code and mobile code technologies; and b. Authorize, monitor, and control the use of mobile code within the system.
System and Communications Protection (SC)
Identify [Assignment: organization-defined unacceptable mobile code] and take [Assignment: organization-defined corrective actions].
System and Communications Protection (SC)
Verify that the acquisition, development, and use of mobile code to be deployed in the system meets [Assignment: organization-defined mobile code requirements].
System and Communications Protection (SC)
Prevent the download and execution of [Assignment: organization-defined unacceptable mobile code].
System and Communications Protection (SC)
Prevent the automatic execution of mobile code in [Assignment: organization-defined software applications] and enforce [Assignment: organization-defined actions] prior to executing the code.
System and Communications Protection (SC)
Allow execution of permitted mobile code only in confined virtual machine environments.
System and Communications Protection (SC)
Level N/A
[Withdrawn: Incorporated into SC-35.]
