Skip to main content

πŸ’Ό AC-20 USE OF EXTERNAL INFORMATION SYSTEMS

  • Contextual name: πŸ’Ό AC-20 USE OF EXTERNAL INFORMATION SYSTEMS
  • ID: /frameworks/nist-sp-800-53-r4/ac/20
  • Located in: πŸ’Ό AC ACCESS CONTROL

Description​

The organization establishes terms and conditions, consistent with any trust relationships established with other organizations owning, operating, and/or maintaining external information systems, allowing authorized individuals to: AC-20a. Access the information system from external information systems; and AC-20b. Process, store, or transmit organization-controlled information using external information systems.

Similar​

  • Internal
    • ID: dec-c-fcf6e6c8

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό NIST CSF v1.1 β†’ πŸ’Ό ID.AM-4: External information systems are catalogued
πŸ’Ό NIST CSF v1.1 β†’ πŸ’Ό PR.AC-3: Remote access is managed

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό AC-20 (1) LIMITS ON AUTHORIZED USE
πŸ’Ό AC-20 (2) PORTABLE STORAGE DEVICES
πŸ’Ό AC-20 (3) NON-ORGANIZATIONALLY OWNED SYSTEMS _ COMPONENTS _ DEVICES
πŸ’Ό AC-20 (4) NETWORK ACCESSIBLE STORAGE DEVICES