Implement non-persistent services and components that are initiated in a known state and terminated, as necessary.

Back

CONTROL ID
10685

CONTROL TYPE
Technical Security

CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS

This Control directly supports the implied Control(s):

Establish, implement, and maintain a virtual environment and shared resources security program., CC ID: 06551

There are no implementation support Controls.

SELECTED AUTHORITY DOCUMENTS COMPLIED WITH

Refresh [Assignment: organization-defined systems and system components] from a known, trusted state [Assignment: organization-defined frequency]. (3.14.4e, Enhanced Security Requirements for Protecting Controlled Unclassified Information, NIST SP 800-172)
The organization implements non-persistent {organizationally documented information system components and services} that are initiated in a known state and terminated {upon end of session of use}. (SI-14 Control, Security and Privacy Controls for Federal Information Systems and Organizations, NIST SP 800-53, Deprecated, Revision 4, Deprecated)
The organization implements non-persistent {organizationally documented information system components and services} that are initiated in a known state and terminated {periodically at organizationally documented frequency}. (SI-14, Security and Privacy Controls for Federal Information Systems and Organizations, NIST SP 800-53, Deprecated, Revision 4, Deprecated)
The organization implements non-persistent [Assignment: organization-defined information system components and services] that are initiated in a known state and terminated [Selection (one or more): upon end of session of use; periodically at [Assignment: organization-defined frequency]]. (SI-14 Control, Security and Privacy Controls for Federal Information Systems and Organizations, NIST SP 800-53, Revision 4)
Implement non-persistent [Assignment: organization-defined system components and services] that are initiated in a known state and terminated [Selection (one or more): upon end of session of use; periodically at [Assignment: organization-defined frequency]]. (SI-14 Control, Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5)
[Selection: Refresh [Assignment: organization-defined information] [Assignment: organization-defined frequency]; Generate [Assignment: organization-defined information] on demand]; and (SI-14(2)(a), Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5)
Establish connections to the system on demand and terminate connections after [Selection: completion of a request; a period of non-use]. (SI-14(3) ¶ 1, Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5)
Implement non-persistent [Assignment: organization-defined system components and services] that are initiated in a known state and terminated [Selection (one or more): upon end of session of use; periodically at [Assignment: organization-defined frequency]]. (SI-14 Control, Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1)
[Selection: Refresh [Assignment: organization-defined information] [Assignment: organization-defined frequency]; Generate [Assignment: organization-defined information] on demand]; and (SI-14(2)(a), Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1)
Establish connections to the system on demand and terminate connections after [Selection: completion of a request; a period of non-use]. (SI-14(3) ¶ 1, Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1)