← Controls / SC

SC-02 Application Partitioning

System and Communications Protection

Low Moderate High

Description

The information system separates user functionality (including user interface services) from information system management functionality.\n

Supplemental Guidance

The information system physically or logically separates user interface services (e.g., public web pages) from information storage and management services (e.g., database management). Separation may be accomplished through the use of different computers, different central processing units, different instances of the operating system, different network addresses, combinations of these methods, or other methods as appropriate.\n

Enhancements

(0) None.\n

Compliance Mappings

ISO 17799 (legacy)

11.4.5

COBIT 4.1 (legacy)

AI2.4