SC-16 TRANSMISSION OF SECURITY ATTRIBUTES

Page last updated:

PCF Compliance

This requirement is out of scope for PCF, and is the responsibility of the application developer. It is not required for systems operating at the FISMA moderate level.


Control Description

The information system associates [Assignment: organization-defined security attributes] with information exchanged between information systems and between system components.

Supplemental Guidance

Security attributes can be explicitly or implicitly associated with the information contained in organizational information systems or system components.