NIST-800-53-SC-7 4

Boundary Protection | External Telecommunications Services

System and Communications Protection Policy for cloud.gov

Parameters:
e

at least annually

a

Implements a managed interface for each external telecommunication service.

b

18F establishes a traffic flow policy for each managed interface as AWS VPC security groups.

c

18F protects the confidentiality and integrity of the information being transmitted across each interface by using TLS for HTTP based connection.

d

18F documents each exception to the traffic flow policy with a supporting mission/business need and duration of that need.

e

18F reviews exceptions to the traffic flow policy at least annually and removes exceptions that are no longer supported by an explicit mission/business need.

results matching ""

    No results matching ""