AC-4 (21) - Physical / Logical Separation of Information Flows
Control requirements
- AC-4 (21) - 0
- The information system separates information flows logically or physically using [Assignment: organization-defined mechanisms and/or techniques] to accomplish [Assignment: organization-defined required separations by types of information].
Implementation guidance
See the resources that follow to learn more about how to implement this control.
NIST supplemental guidance
Enforcing the separation of information flows by type can enhance protection by ensuring that information is not commingled while in transit and by enabling flow control by transmission paths perhaps not otherwise achievable. Types of separable information include, for example, inbound and outbound communications traffic, service requests and responses, and information of differing security categories.