STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← All Controls

AC-4 (12)

Access ControlRev 5system

Data Type Identifiers

Control Statement

When transferring information between different security domains, use [Assignment: data type identifiers] to validate data essential for information flow decisions.

Supplemental Guidance

Data type identifiers include filenames, file types, file signatures or tokens, and multiple internal file signatures or tokens. Systems only allow transfer of data that is compliant with data type format specifications. Identification and validation of data types is based on defined specifications associated with each allowed data format. The filename and number alone are not used for data type identification. Content is validated syntactically and semantically against its specification to ensure that it is the proper data type.

CCI Identifiers (3)

CCI-000218The information system, when transferring information between different security domains, identifies information flows by data type specification and usage.CCI-002200Defines the data type identifiers to be used to validate data being transferred between different security domains.CCI-002201When transferring information between different security domains, use organization-defined data type identifiers to validate data essential for information flow decisions.

Linked STIG Checks (5)

Across 4 STIGs. Click to expand.