STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← All Controls

SC-46

System and Communications ProtectionRev 5system

Cross Domain Policy Enforcement

Control Statement

Implement a policy enforcement mechanism [Selection: organization-defined value] between the physical and/or network interfaces for the connecting security domains.

Supplemental Guidance

For logical policy enforcement mechanisms, organizations avoid creating a logical path between interfaces to prevent the ability to bypass the policy enforcement mechanism. For physical policy enforcement mechanisms, the robustness of physical isolation afforded by the physical implementation of policy enforcement to preclude the presence of logical covert channels penetrating the security domain may be needed. Contact [ncdsmo@nsa.gov](mailto:ncdsmo@nsa.gov) for more information.

Related Controls (2)

AC-4SC-7

CCI Identifiers (1)

CCI-004930Implement a policy enforcement mechanism physically or logically between the physical and/or network interfaces for the connecting security domains.

Linked STIG Checks (0)

No STIG checks reference this control.