>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

CM-7(1)Least Functionality

PBMM (P2)
Secret (P2)
Operational

>Control Description

LEAST FUNCTIONALITY | PERIODIC REVIEW The organization reviews the information system organization-defined frequency to identify unnecessary and/or non-secure functions, ports, protocols, and services; and The organization disables organization-defined functions, ports, protocols, and services within the information system deemed to be unnecessary and/or non-secure.

>Supplemental Guidance

The organization can either make a determination of the relative security of the function, port, protocol, and/or service or base the security decision on the assessment of other entities. Bluetooth, FTP, and peer-to-peer networking are examples of less than secure protocols. Related controls: AC-18, CM-7, IA-2.

>Profile-Specific Parameters

(1) frequency [at a frequency no longer than annually]

Ask AI

Configure your API key to use AI features.