AC-4 (21) - Physical / Logical Separation of Information Flows

Control requirements

AC-4 (21) - 0

The information system separates information flows logically or physically using [Assignment: organization-defined mechanisms and/or techniques] to accomplish [Assignment: organization-defined required separations by types of information].

Implementation guidance

See the resources that follow to learn more about how to implement this control.

• Connecting application provider to the management VPC

NIST supplemental guidance

Enforcing the separation of information flows by type can enhance protection by ensuring that information is not commingled while in transit and by enabling flow control by transmission paths perhaps not otherwise achievable. Types of separable information include, for example, inbound and outbound communications traffic, service requests and responses, and information of differing security categories.