AC-03(11) Restrict Access to Specific Information Types
Restrict access to data repositories containing ac-03.11_odp.
Restricting access to specific information is intended to provide flexibility regarding access control of specific information types within a system. For example, role-based access could be employed to allow access to only a specific type of personally identifiable information within a database rather than allowing access to the database in its entirety. Other examples include restricting access to cryptographic keys, authentication information, and selected system information.
Related controls 4
- CM-08 System Component Inventory L M H P
- CM-12 Information Location L M H P
- CM-13 Data Action Mapping L M H P
- PM-05 System Inventory L M H P