SC-03 Security Function Isolation

System and Communications Protection

Low Moderate High

Description

The information system isolates security functions from nonsecurity functions.\n

Supplemental Guidance

The information system isolates security functions from nonsecurity functions by means of partitions, domains, etc., including control of access to and integrity of, the hardware, software, and firmware that perform those security functions. The information system maintains a separate execution domain (e.g., address space) for each executing process.\n

SC-03 Security Function Isolation

Description

Supplemental Guidance

Enhancements

Compliance Mappings

ISO 17799 (legacy)

COBIT 4.1 (legacy)