>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

SC-24Fail In Known State

PBMM (P1)
Secret (P1)
Technical

>Control Description

(A) The information system fails to a organization-defined known-state for organization-defined types of failures preserving organization-defined system state information in failure.

>Supplemental Guidance

Failure in a known state addresses security concerns in accordance with the mission/business needs of organizations. Failure in a known secure state helps to prevent the loss of confidentiality, integrity, or availability of information in the event of failures of organizational information systems or system components. Failure in a known safe state helps to prevent systems from failing to a state that may cause injury to individuals or destruction to property.

Preserving information system state information facilitates system restart and return to the operational mode of organizations with less disruption of mission/business processes. Related controls: CP-2, CP-10, CP-12, SC-7, SC-22

>Tailoring Guidance

This security control/enhancement is appropriate for organizationally defined systems (e.g., firewalls).

Ask AI

Configure your API key to use AI features.