SC-34(1)—Non-Modifiable Executable Programs
Technical
>Control Description
NON-MODIFIABLE EXECUTABLE PROGRAMS | NO WRITABLE STORAGE The organization employs ⚙organization-defined information system components with no writeable storage that is persistent across component restart or power on/off.
>Supplemental Guidance
This control enhancement: (i) eliminates the possibility of malicious code insertion via persistent, writeable storage within the designated information system components; and (ii) applies to both fixed and removable storage, with the latter being addressed directly or as specific restrictions imposed through access controls for mobile devices. Related controls: AC-19, MP-7.
Ask AI
Configure your API key to use AI features.