SC-50 Software-enforced Separation and Policy Enforcement
Implement software-enforced separation and policy enforcement mechanisms between sc-50_odp.
| Parameter ID | Definition |
|---|---|
| sc-50_odp | security domains |
Baselines
- L
- M
- H
- P
Guidance
System owners may require additional strength of mechanism to ensure domain separation and policy enforcement for specific types of threats and environments of operation.
References 1
- SP 800-160-1 Ross RS, Oren JC, McEvilley M (2016) Systems Security Engineering: Considerations for a Multidisciplinary Approach in the Engineering of Trustworthy Secure Systems. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) 800-160, Vol. 1, Includes updates as of March 21, 2018.
Related controls 6
- AC-03 Access Enforcement L M H P
- AC-04 Information Flow Enforcement L M H P
- SA-08 Security and Privacy Engineering Principles L M H P
- SC-02 Separation of System and User Functionality L M H P
- SC-03 Security Function Isolation L M H P
- SC-49 Hardware-enforced Separation and Policy Enforcement L M H P