Detections
Analytics
800-53|SC-2
Title
APPLICATION PARTITIONINGDescription
The information system separates user functionality (including user interface services) from information system management functionality.Supplemental
Information system management functionality includes, for example, functions necessary to administer databases, network components, workstations, or servers, and typically requires privileged user access. The separation of user functionality from information system management functionality is either physical or logical. Organizations implement separation of system management-related functionality from user functionality by using different computers, different central processing units, different instances of operating systems, different network addresses, virtualization techniques, or combinations of these or other methods, as appropriate. This type of separation includes, for example, web administrative interfaces that use separate authentication methods for users of any other information system resources. Separation of system and user functionality may include isolating administrative interfaces on different domains and with additional access controls.Reference Item Details
Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations
Related: SA-4,SA-8,SC-3
Category: SYSTEM AND COMMUNICATIONS PROTECTION
Family: SYSTEM AND COMMUNICATIONS PROTECTION
Priority: P1
Baseline Impact: MODERATE,HIGH
Audit Items
View all Reference Audit Items