control_freak | Controls | AC-04(04) - Flow Control of Encrypted Information

Prevent encrypted information from bypassing ac-04.04_odp.01 by ac-04.04_odp.02.

Parameter ID	Definition
ac-04.04_odp.01	information flow control mechanisms
ac-04.04_odp.02	Selection (one-or-more): decrypting the information blocking the flow of the encrypted information terminating communications sessions attempting to pass encrypted information {{ insert: param ac-04.04_odp.03 }}
ac-04.04_odp.03	organization-defined procedure or method

Parameter ID

Definition

ac-04.04_odp.01

information flow control mechanisms

ac-04.04_odp.02

Selection (one-or-more):

decrypting the information
blocking the flow of the encrypted information
terminating communications sessions attempting to pass encrypted information
{{ insert: param
ac-04.04_odp.03 }}

ac-04.04_odp.03

organization-defined procedure or method

Baselines

L Not selected
M Not selected
H Selected
P Not selected

Guidance

Flow control mechanisms include content checking, security policy filters, and data type identifiers. The term encryption is extended to cover encoded data not recognized by filtering mechanisms.

Related controls 1

SI-04 System Monitoring L M H P

AC-04(04) Flow Control of Encrypted Information

Baselines

Guidance

Related controls 1