>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

AC-4(12)Information Flow Enforcement

Secret (P1)
Technical

>Control Description

INFORMATION FLOW ENFORCEMENT | DATA TYPE IDENTIFIERS The information system, when transferring information between different security domains, uses organization-defined data type identifiers to validate data essential for information flow decisions.

>Supplemental Guidance

Data type identifiers include, for example, filenames, file types, file signatures/tokens, and multiple internal file signatures/tokens. Information systems may allow transfer of data only if compliant with data type format specifications.

>Tailoring Guidance

This security control/enhancement specifies a very specialized and/or advanced capability that is not required for all systems. Consequently, inclusion in a departmental profile is made on a case by case basis.

Ask AI

Configure your API key to use AI features.