Release shared resources back to the Information System when they are no longer necessary.

CONTROL ID
05724

CONTROL TYPE
Configuration

CLASSIFICATION
Preventive

This Control directly supports the implied Control(s):

Establish, implement, and maintain a virtual environment and shared resources security program., CC ID: 06551

There are no implementation support Controls.

Volatile memory resources are those that generally do not retain information after being released to memory management. However, there are attacks against random access memory (RAM) which might extract key material or other confidential data before it is actually over-written. Therefore, when volati… (8.4.3 (1) ¶ 2, IEC 62443-4-2: Security for industrial automation and control systems â Part 4-2: Technical security requirements for IACS components, Edition 1.0)
The organization must ensure that information remnants, including encrypted information representations, produced by a prior user or system process acting on behalf of a prior user, cannot be unintentionally or intentionally accessed by users of the shared system resource. The system must release sh… (CSR 2.5.10, Pub 100-17 Medicare Business Partners Systems Security, Transmittal 7, Appendix A: CMS Core Security Requirements CSR, March 17, 2006)
Additionally, all DoD information/data and CSP information/data shared with the Mission Owner must be made available for off-boarding and backup IAW sections 5.8, Data Retrieval and Destruction for Off-boarding from a CSO and 5.12 - Backup. (Section 5.2.3 ¶ 4, Department of Defense Cloud Computing Security Requirements Guide, Version 1, Release 3)