AC-04(21) Physical or Logical Separation of Information Flows

Separate information flows logically or physically using ac-4.21_prm_1 to accomplish ac-04.21_odp.03.

Parameter ID Definition
ac-4.21_prm_1 organization-defined mechanisms and/or techniques
ac-04.21_odp.01 mechanisms and/or techniques
ac-04.21_odp.02 mechanisms and/or techniques
ac-04.21_odp.03 required separations

Baselines

Guidance

Enforcing the separation of information flows associated with defined types of data can enhance protection by ensuring that information is not commingled while in transit and by enabling flow control by transmission paths that are not otherwise achievable. Types of separable information include inbound and outbound communications traffic, service requests and responses, and information of differing security impact or classification levels.

Related controls 1