• Requirement

    Allow execution of binary or machine-executable code only in confined physical or virtual machine environments and with the explicit approval of [Assignment: organization-defined personnel or roles] when such code is:

    1. Obtained from sources with limited or no warranty; and/or
    2. Without the provision of source code.
  • Discussion

    Code execution in protected environments applies to all sources of binary or machine-executable code, including commercial software and firmware and open-source software.

More Info

  • Title

    Least Functionality | Code Execution in Protected Environments
  • Family

    Configuration Management
  • NIST 800-53B Baseline(s)

    • Related NIST 800-53 ID


    NIST 800-53A Assessment Guidance

    CMMC Training

    Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!