Term:Security Control Inheritance

From FISMApedia
Jump to: navigation, search

NIST SP 800-37r1 Draft

Security Control Inheritance - A situation in which an information system or application receives protection from security controls (or portions of security controls) that are developed, implemented, and assessed for effectiveness by other entities either internal or external to the organization where the system or application resides.

NIST SP 800-53r3

Security Control Inheritance - A situation in which an information system or application receives protection from security controls (or portions of security controls) that are developed, implemented, assessed, authorized, and monitored by entities other than those responsible for the system or application; entities either internal or external to the organization where the system or application resides. See Common Control.

Retrieved from "http://fismapedia.org/index.php?title=Term:Security_Control_Inheritance&oldid=42658"