800-53|AC-16(4)

Title

ASSOCIATION OF ATTRIBUTES BY AUTHORIZED INDIVIDUALS

Description

The information system supports the association of [Assignment: organization-defined security attributes] with [Assignment: organization-defined subjects and objects] by authorized individuals (or processes acting on behalf of individuals).

Supplemental

The support provided by information systems can vary to include: (i) prompting users to select specific security attributes to be associated with specific information objects; (ii) employing automated mechanisms for categorizing information with appropriate attributes based on defined policies; or (iii) ensuring that the combination of selected security attributes selected is valid. Organizations consider the creation, deletion, or modification of security attributes when defining auditable events.

Reference Item Details

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Category: ACCESS CONTROL

Parent Title: SECURITY ATTRIBUTES

Family: ACCESS CONTROL

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
SHPT-00-000040 - SharePoint must allow authorized users to associate security attributes with information.	Windows	DISA STIG SharePoint 2010 v1r9
SQL2-00-000900 - SQL Server must allow authorized users to associate security labels to information in the database.	MS_SQLDB	DISA STIG SQL Server 2012 Database Audit v1r20

Detections

Analytics