💼 CA-3 SYSTEM INTERCONNECTIONS

Contextual name: 💼 CA-3 SYSTEM INTERCONNECTIONS
ID: /frameworks/nist-sp-800-53-r4/ca/03
Located in: 💼 CA SECURITY ASSESSMENT AND AUTHORIZATION

Description

The organization: CA-3a. Authorizes connections from the information system to other information systems through the use of Interconnection Security Agreements; CA-3b. Documents, for each interconnection, the interface characteristics, security requirements, and the nature of the information communicated; and CA-3c. Reviews and updates Interconnection Security Agreements [Assignment: organization-defined frequency].

Similar

Internal
- ID: dec-c-d8a7eec3

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 NIST CSF v1.1 → 💼 DE.AE-1: A baseline of network operations and expected data flows for users and systems is established and managed		10	14
💼 NIST CSF v1.1 → 💼 ID.AM-3: Organizational communication and data flows are mapped		4	7

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags
💼 CA-3 (1) UNCLASSIFIED NATIONAL SECURITY SYSTEM CONNECTIONS
💼 CA-3 (2) CLASSIFIED NATIONAL SECURITY SYSTEM CONNECTIONS
💼 CA-3 (3) UNCLASSIFIED NON-NATIONAL SECURITY SYSTEM CONNECTIONS
💼 CA-3 (4) CONNECTIONS TO PUBLIC NETWORKS
💼 CA-3 (5) RESTRICTIONS ON EXTERNAL SYSTEM CONNECTIONS

Policies (2)

Policy	Logic Count	Flags
📝 Google Cloud SQL Instance External Authorized Networks do not whitelist all public IP addresses 🟢	1	🟢 x6
📝 Google GCE Instance has a public IP address 🟢	1	🟢 x6

Description​

Similar​

Similar Sections (Give Policies To)​

Sub Sections​

Policies (2)​

Description

Similar

Similar Sections (Give Policies To)

Sub Sections

Policies (2)