AC-04(15) Detection of Unsanctioned Information
When transferring information between different security domains, examine the information for the presence of ac-04.15_odp.01 and prohibit the transfer of such information in accordance with the ac-4.15_prm_2.
| Parameter ID | Definition |
|---|---|
| ac-4.15_prm_2 | organization-defined security or privacy policy |
| ac-04.15_odp.01 | unsanctioned information |
| ac-04.15_odp.02 | security policy |
| ac-04.15_odp.03 | privacy policy |
Baselines
- L
- M
- H
- P
Guidance
Unsanctioned information includes malicious code, information that is inappropriate for release from the source network, or executable code that could disrupt or harm the services or systems on the destination network.
Related controls 1
- SI-03 Malicious Code Protection L M H P