N
|
control familySC

System and Communications Protection (SC)

System and Communications Protection - Contains 51 controls and 111 control enhancements.

51
Controls
111
Enhancements
communicationsencryptionboundary-protectionnetwork

Why These Connect

Maps To2

These are equivalent or closely aligned requirements in other frameworks.

System and Communications Protection maps to PCI DSS encryption and network security requirements

Addresses Topic3

This control is relevant to the linked cybersecurity topic area.

System and Communications Protection covers encryption and cryptographic requirements

Implements2

These controls provide the technical implementation for the linked requirement.

Data Security maps to System and Communications Protection controls

Implementing Controls

PR.DSData Security (PR.DS)PR.IRTechnology Infrastructure Resilience (PR.IR)

Cross-Framework Mappings

PCI DSS 4.0PCI DSS v4.0
ISO 27001ISO/IEC 27001:2022

Controls(51)

SC-1Policy and Procedures (SC-1)
LMH
SC-7Boundary Protection (SC-7)
LMH
SC-2Separation of System and User Functionality (SC-2)
MH
SC-3Security Function Isolation (SC-3)
H
SC-4Information in Shared System Resources (SC-4)
MH
SC-5Denial-of-service Protection (SC-5)
LMH
SC-6Resource Availability (SC-6)
SC-8Transmission Confidentiality and Integrity (SC-8)
MH
SC-9Transmission Confidentiality (SC-9)W
SC-10Network Disconnect (SC-10)
MH
SC-11Trusted Path (SC-11)
SC-12Cryptographic Key Establishment and Management (SC-12)
LMH
SC-13Cryptographic Protection (SC-13)
LMH
SC-14Public Access Protections (SC-14)W
SC-15Collaborative Computing Devices and Applications (SC-15)
LMH
SC-16Transmission of Security and Privacy Attributes (SC-16)
SC-17Public Key Infrastructure Certificates (SC-17)
MH
SC-18Mobile Code (SC-18)
MH
SC-19Voice Over Internet Protocol (SC-19)W
SC-20Secure Name/Address Resolution Service (Authoritative Source) (SC-20)
LMH
SC-21Secure Name/Address Resolution Service (Recursive or Caching Resolver) (SC-21)
LMH
SC-22Architecture and Provisioning for Name/Address Resolution Service (SC-22)
LMH
SC-23Session Authenticity (SC-23)
MH
SC-24Fail in Known State (SC-24)
H
SC-25Thin Nodes (SC-25)
SC-26Decoys (SC-26)
SC-27Platform-independent Applications (SC-27)
SC-28Protection of Information at Rest (SC-28)
MH
SC-29Heterogeneity (SC-29)
SC-30Concealment and Misdirection (SC-30)
SC-31Covert Channel Analysis (SC-31)
SC-32System Partitioning (SC-32)
SC-33Transmission Preparation Integrity (SC-33)W
SC-34Non-modifiable Executable Programs (SC-34)
SC-35External Malicious Code Identification (SC-35)
SC-36Distributed Processing and Storage (SC-36)
SC-37Out-of-band Channels (SC-37)
SC-38Operations Security (SC-38)
SC-39Process Isolation (SC-39)
LMH
SC-40Wireless Link Protection (SC-40)
SC-41Port and I/O Device Access (SC-41)
SC-42Sensor Capability and Data (SC-42)
SC-43Usage Restrictions (SC-43)
SC-44Detonation Chambers (SC-44)
SC-45System Time Synchronization (SC-45)
SC-46Cross Domain Policy Enforcement (SC-46)
SC-47Alternate Communications Paths (SC-47)
SC-48Sensor Relocation (SC-48)
SC-49Hardware-enforced Separation and Policy Enforcement (SC-49)
SC-50Software-enforced Separation and Policy Enforcement (SC-50)
SC-51Hardware-based Protection (SC-51)

See Also

📊View in HeatmapCompare Baselines🛡Threat Coverage