>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Home / Frameworks / FedRAMP Rev 5 / SC — System and Communications Protection

SC System and Communications Protection

35 controls in the System and Communications Protection family

SC-1Policy and Procedures
LI-SaaS
LOW
MODERATE
HIGH
SC-2Separation of System and User Functionality
MODERATE
HIGH
SC-3Security Function Isolation
HIGH
SC-4Information in Shared System Resources
MODERATE
HIGH
SC-5Denial-of-service Protection
LI-SaaS
LOW
MODERATE
HIGH
SC-7Boundary Protection
LI-SaaS
LOW
MODERATE
HIGH
SC-7 (03)Boundary Protection | Access Points
MODERATE
HIGH
SC-7 (04)Boundary Protection | External Telecommunications Services
MODERATE
HIGH
SC-7 (05)Boundary Protection | Deny by Default -- Allow by Exception
MODERATE
HIGH
SC-7 (07)Boundary Protection | Split Tunneling for Remote Devices
MODERATE
HIGH
SC-7 (08)Boundary Protection | Route Traffic to Authenticated Proxy Servers
MODERATE
HIGH
SC-7 (10)Boundary Protection | Prevent Exfiltration
HIGH
SC-7 (12)Boundary Protection | Host-based Protection
MODERATE
HIGH
SC-7 (18)Boundary Protection | Fail Secure
MODERATE
HIGH
SC-7 (20)Boundary Protection | Dynamic Isolation and Segregation
HIGH
SC-7 (21)Boundary Protection | Isolation of System Components
HIGH
SC-8Transmission Confidentiality and Integrity
LI-SaaS
LOW
MODERATE
HIGH
SC-8 (01)Transmission Confidentiality and Integrity | Cryptographic Protection
LOW
MODERATE
HIGH
SC-10Network Disconnect
MODERATE
HIGH
SC-12Cryptographic Key Establishment and Management
LI-SaaS
LOW
MODERATE
HIGH
SC-12 (01)Cryptographic Key Establishment and Management | Availability
HIGH
SC-13Cryptographic Protection
LI-SaaS
LOW
MODERATE
HIGH
SC-15Collaborative Computing Devices and Applications
LI-SaaS
LOW
MODERATE
HIGH
SC-17Public Key Infrastructure Certificates
MODERATE
HIGH
SC-18Mobile Code
MODERATE
HIGH
SC-20Secure Name/address Resolution Service (authoritative Source)
LI-SaaS
LOW
MODERATE
HIGH
SC-21Secure Name/address Resolution Service (recursive or Caching Resolver)
LI-SaaS
LOW
MODERATE
HIGH
SC-22Architecture and Provisioning for Name/address Resolution Service
LI-SaaS
LOW
MODERATE
HIGH
SC-23Session Authenticity
MODERATE
HIGH
SC-24Fail in Known State
HIGH
SC-28Protection of Information at Rest
LI-SaaS
LOW
MODERATE
HIGH
SC-28 (01)Protection of Information at Rest | Cryptographic Protection
LOW
MODERATE
HIGH
SC-39Process Isolation
LI-SaaS
LOW
MODERATE
HIGH
SC-45System Time Synchronization
MODERATE
HIGH
SC-45 (01)System Time Synchronization | Synchronization with Authoritative Time Source
MODERATE
HIGH
← Back to all controls