SC.L2-3.13.12—Collaborative Device Control
Level 2
800-171: 3.13.12
>Control Description
Prohibit remote activation of collaborative computing devices and provide indication of devices in use to users present at the device.
>Cross-Framework Mappings
>Assessment Interview Topics
Questions assessors commonly ask
Process & Governance:
- •What is your policy regarding collaborative computing devices (cameras, microphones)?
- •How do you communicate requirements for indication of device use to users?
- •What is your process for ensuring remote activation is prohibited?
- •How do you handle exceptions for legitimate remote collaboration needs?
Technical Implementation:
- •What technical mechanisms disable remote activation of cameras/microphones?
- •What endpoint controls manage collaborative devices?
- •What indicators show when cameras or microphones are active?
- •What GPO or management tools control collaborative device settings?
- •What physical mechanisms disable cameras/mics?
Evidence & Documentation:
- •What network diagrams show boundary protection architecture?
- •What firewall rule sets and configurations can you provide?
- •What encryption implementation documentation shows FIPS-validated crypto?
- •What key management procedures can you provide?
- •What network segmentation documentation shows proper separation?
- •What evidence shows cryptographic mechanisms protect CUI?
- •What configuration documentation shows security controls are properly implemented?
Ask AI
Configure your API key to use AI features.