STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← AC-4 (15) — Information Flow Enforcement

CCI-002204

Definition

Defines the security or privacy policy which prohibits the transfer of unsanctioned information between different security domains.

Parent Control

AC-4 (15)Information Flow EnforcementAccess Control

Linked STIG Checks (5)

V-259892CAT IIAn IP-based VTC system implementing a single CODEC that supports conferences on multiple networks with different classification levels (i.e., unclassified, SECRET, TOP SECRET, TS-SCI) must support Periods Processing by being sanitized of all information while transitioning from one period/network to the next.Enterprise Voice, Video, and Messaging Policy Security Requirements GuideV-259894CAT IIAn IP-based VTC system implementing a single CODEC that supports conferences on multiple networks with different classification levels (i.e., unclassified, SECRET, TOP SECRET, TS-SCI) must support Periods Processing sanitization by purging/clearing volatile memory within the CODEC by powering the CODEC off for a minimum of 60 seconds.Enterprise Voice, Video, and Messaging Policy Security Requirements GuideV-259897CAT IIAn IP-based VTC system implementing a single CODEC that supports conferences on multiple networks with different classification levels must be implemented in such a way that configuration information for a network having a higher classification level is not disclosed to a network having a lower classification level.Enterprise Voice, Video, and Messaging Policy Security Requirements GuideV-259898CAT IIThe A/B, A/B/C, or A/B/C/D switch used for network switching in IP-based VTC systems implementing a single CODEC that supports conferences on multiple networks with different classification levels must be Common Criteria certified.Enterprise Voice, Video, and Messaging Policy Security Requirements GuideV-259901CAT IIThe implementation of an IP-based VTC system that supports conferences on multiple networks with different classification levels must maintain isolation between the networks to which it connects by implementing separation of equipment and cabling between the various networks with differing classification levels in accordance with CNSSAM TEMPEST/01-13, RED/BLACK Installation Guidance.Enterprise Voice, Video, and Messaging Policy Security Requirements Guide