AC-4(32)

  • Requirement

    When transferring information between different security domains, the process that transfers information between filter pipelines:

    1. Does not filter message content;
    2. Validates filtering metadata;
    3. Ensures the content associated with the filtering metadata has successfully completed filtering; and
    4. Transfers the content to the destination filter pipeline.
  • Discussion

    The processes transferring information between filter pipelines have minimum complexity and functionality to provide assurance that the processes operate correctly.

More Info

  • Title

    Information Flow Enforcement | Process Requirements for Information Transfer
  • Family

    Access Control
  • NIST 800-53B Baseline(s)

    • Related NIST 800-53 ID

    NIST 800-53A Assessment Guidance

    CMMC Training

    Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!