AC-04(25) Data Sanitization

When transferring information between different security domains, sanitize data to minimize ac-04.25_odp.01 in accordance with ac-04.25_odp.02.

Parameter ID Definition
ac-04.25_odp.01

Selection (one-or-more):

  • delivery of malicious content
  • command and control of malicious code
  • malicious code augmentation
  • and steganography-encoded data
  • spillage of sensitive information
ac-04.25_odp.02 policy

Baselines

Guidance

Data sanitization is the process of irreversibly removing or destroying data stored on a memory device (e.g., hard drives, flash memory/solid state drives, mobile devices, CDs, and DVDs) or in hard copy form.

Related controls 1