>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

AC-7(2)Unsuccessful Login Attempts

Technical

>Control Description

UNSUCCESSFUL LOGON ATTEMPTS | PURGE / WIPE MOBILE DEVICE The information system purges/wipes information from organization-defined mobile devices based on organization-defined purging/wiping requirements/techniques after organization-defined number consecutive, unsuccessful device logon attempts.

>Supplemental Guidance

This control enhancement applies only to mobile devices for which a logon occurs (e.g., personal digital assistants, smart phones, tablets). The logon is to the mobile device, not to any one account on the device. Therefore, successful logons to any accounts on mobile devices reset the unsuccessful logon count to zero.

Organizations define information to be purged/wiped carefully in order to avoid over purging/wiping which may result in devices becoming unusable. Purging/wiping may be unnecessary if the information on the device is protected with sufficiently strong encryption mechanisms. Related controls: AC-19, MP-5, MP-6, SC-13.

>Tailoring Guidance

This security control/enhancement requires careful balance between usability and security. Care needs to be taken to ensure that the appropriate balance between the two seemingly conflicting requirements is achieved.

Ask AI

Configure your API key to use AI features.