SI-16

  • Requirement

    Implement the following controls to protect the system memory from unauthorized code execution: [Assignment: organization-defined controls].

  • Discussion

    Some adversaries launch attacks with the intent of executing code in non-executable regions of memory or in memory locations that are prohibited. Controls employed to protect memory include data execution prevention and address space layout randomization. Data execution prevention controls can either be hardware-enforced or software-enforced with hardware enforcement providing the greater strength of mechanism.

More Info

  • Title

    Memory Protection
  • Family

    System and Information Integrity
  • NIST 800-53B Baseline(s)

    • Moderate
    • High
  • Related NIST 800-53 ID

    AC-25;SC-3;SI-7

NIST 800-53A Assessment Guidance

CMMC Training

Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!