NET-02
Layered Network Defenses
Description
Mechanisms exist to implement security functions as a layered structure that minimizes interactions between layers of the design and avoids any dependence by lower layers on the functionality or correctness of higher layers.
Control Question
Does the organization implement security functions as a layered structure that minimizes interactions between layers of the design and avoids any dependence by lower layers on the functionality or correctness of higher layers?
Control Metadata
Domain:
Network Security
Validation Cadence:
Annual
Evidence Request List:
E-DCH-03 E-DCH-04 E-DCH-05