SC-7(22)—Separate Subnets For Connecting To Different Security Domains

The decomposition of systems into subnetworks (i.e., subnets) helps to provide the appropriate level of protection for network connections to different security domains that contain information with different security categories or classification levels.