zydronium/manage.get.gov

mirror of https://github.com/cisagov/manage.get.gov.git synced 2025-08-03 16:32:15 +02:00

Document things cloud.gov CRM fully supports (#122 )

* document things cloud.gov crm fully supports

* run make assemble

2022-10-13 10:36:44 -04:00

1.3 KiB

Raw Blame History

implementation-status

control-origination

c-implemented

c-inherited-cloud-gov

ac-6.10 - [catalog] Prohibit Non-privileged Users from Executing Privileged Functions

Control Statement

Prevent non-privileged users from executing privileged functions.

Control guidance

Privileged functions include disabling, circumventing, or altering implemented security or privacy controls, establishing system accounts, performing system integrity checks, and administering cryptographic key management activities. Non-privileged users are individuals who do not possess appropriate authorizations. Privileged functions that require protection from non-privileged users include circumventing intrusion detection and prevention mechanisms or malicious code protection mechanisms. Preventing non-privileged users from executing privileged functions is enforced by AC-3.

Control assessment-objective

non-privileged users are prevented from executing privileged functions.

What is the solution and how is it implemented?

The cloud.gov role-based access control system prevents non-privileged users from executing privileged functions.

1.3 KiB Raw Blame History