AC-17(06) Protection of Mechanism Information
Protect information about remote access mechanisms from unauthorized use and disclosure.
Remote access to organizational information by non-organizational entities can increase the risk of unauthorized use and disclosure about remote access mechanisms. The organization considers including remote access requirements in the information exchange agreements with other organizations, as applicable. Remote access requirements can also be included in rules of behavior (see PL-4 ) and access agreements (see PS-6).
Related controls 3
- AT-02 Literacy Training and Awareness L M H P
- AT-03 Role-based Training L M H P
- PS-06 Access Agreements L M H P