Catalog: NIST SP 800-53 Rev 5 | Controls: 25
| Control ID | Title / Statement | Priority | Baseline Impact |
|---|---|---|---|
| AC-01 |
Policy and Procedures
|
P1 | L M H |
| AC-02 |
Account Management
|
P1 | L M H |
| AC-03 |
Access Enforcement
|
P1 | L M H |
| AC-04 |
Information Flow Enforcement
|
P1 | M H |
| AC-05 |
Separation of Duties
|
P1 | M H |
| AC-06 |
Least Privilege
|
P1 | M H |
| AC-07 |
Unsuccessful Logon Attempts
|
P2 | L M H |
| AC-08 |
System Use Notification
|
P2 | L M H |
| AC-09 |
Previous Logon Notification
|
P0 | — |
| AC-10 |
Concurrent Session Control
|
P2 | M H |
| AC-11 |
Device Lock
|
P2 | M H |
| AC-12 |
Session Termination
|
P2 | M H |
| AC-13 |
Withdrawn
|
P0 | — |
| AC-14 |
Permitted Actions Without Identification or Authentication
|
P3 | L M H |
| AC-15 |
Automated Remote Access Management
|
P1 | M H |
| AC-16 |
Security and Privacy Attributes
|
P2 | M H |
| AC-17 |
Remote Access
|
P1 | L M H |
| AC-18 |
Wireless Access
|
P1 | L M H |
| AC-19 |
Access Control for Mobile Devices
|
P1 | M H |
| AC-20 |
Use of External Systems
|
P1 | L M H |
| AC-21 |
Permitted Actions Without Identification or Authentication
|
P3 | L M H |
| AC-22 |
Controlled Release
|
P1 | M H |
| AC-23 |
Data Mining Protection
|
P0 | — |
| AC-24 |
Access Control Decisions
|
P0 | — |
| AC-25 |
Reference Monitor
|
P0 | — |