AC-4(4)

  • Requirement

    Prevent encrypted information from bypassing [Assignment: organization-defined information flow control mechanisms] by [Selection (one or more): decrypting the information; blocking the flow of the encrypted information; terminating communications sessions attempting to pass encrypted information; [Assignment: organization-defined procedure or method]].

  • Discussion

    Flow control mechanisms include content checking, security policy filters, and data type identifiers. The term encryption is extended to cover encoded data not recognized by filtering mechanisms.

More Info

  • Title

    Information Flow Enforcement | Flow Control of Encrypted Information
  • Family

    Access Control
  • NIST 800-53B Baseline(s)

    • High
  • Related NIST 800-53 ID

    SI-4

NIST 800-53A Assessment Guidance

CMMC Training

Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!