STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← All Controls

AC-4 (2)

Access ControlRev 5system

Information Flow Enforcement

Control Statement

Use protected processing domains to enforce [Assignment: information flow control policies] as a basis for flow control decisions.

Supplemental Guidance

Protected processing domains within systems are processing spaces that have controlled interactions with other processing spaces, enabling control of information flows between these spaces and to/from information objects. A protected processing domain can be provided, for example, by implementing domain and type enforcement. In domain and type enforcement, system processes are assigned to domains, information is identified by types, and information flows are controlled based on allowed information accesses (i.e., determined by domain and type), allowed signaling among domains, and allowed process transitions to other domains.

Related Controls (1)

SC-39

CCI Identifiers (2)

CCI-000026Use protected processing domains to enforce organization-defined information flow control policies as a basis for flow control decisions.CCI-002191Defines the information flow control policies to be enforced by the information system using protected processing domains.

Linked STIG Checks (1)

Across 1 STIGs. Click to expand.