💼 SC-28 PROTECTION OF INFORMATION AT REST
- Contextual name: 💼 SC-28 PROTECTION OF INFORMATION AT REST
- ID:
/frameworks/nist-sp-800-53-r4/sc/28 - Located in: 💼 SC SYSTEM AND COMMUNICATIONS PROTECTION
Description
The information system protects the [Selection (one or more): confidentiality; integrity] of [Assignment: organization-defined information at rest].
Similar
- Internal
- ID:
dec-c-12ff3f46
- ID:
Similar Sections (Give Policies To)
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 NIST CSF v1.1 → 💼 PR.DS-1: Data-at-rest is protected | 15 | 28 |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 SC-28 (1) CRYPTOGRAPHIC PROTECTION | ||||
| 💼 SC-28 (2) OFF-LINE STORAGE |
Policies (3)
| Policy | Logic Count | Flags |
|---|---|---|
| 📝 AWS EFS File System encryption is not enabled 🟢 | 1 | 🟢 x6 |
| 📝 AWS RDS Instance Encryption is not enabled 🟢 | 1 | 🟢 x6 |
| 📝 Azure MySQL Flexible Server require_secure_transport Parameter is not set to ON 🟢 | 1 | 🟢 x6 |
Internal Rules
| Rule | Policies | Flags |
|---|---|---|
| ✉️ dec-x-6ba5ecd2 | 1 | |
| ✉️ dec-x-14f5fc25 | 1 | |
| ✉️ dec-x-966d3183 | 1 |