Manual Examination SC_07_5_1

This NIST 800-53 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.
Return to Main Page
Manual Examination SC_07_5_1_1

FIPS 199 High Impact (for ICS)

Findings Color Code
Satisfied
Other Than Satisfied - not assessed
Other Than Satisfied - failed

NIST SP 800-53A SC-07(05) .01

Question: Do the system and communications protection policy and the procedures addressing boundary protection and the information system design documentation specify that the information system deny network traffic by default and allow network traffic by exception (i.e., deny all, permit by exception) ?

Answered by: BOSTON::WILSON

As part of Manual Examination group: POLICY_SC

Answer: YES

This NIST 800-53 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.