Barriers Library
Reusable barriers — prevention barriers sit on threat paths, mitigation barriers on consequence paths.
Add Barrier
Tags:
12 barriers — page 1 of 1
| Name | Type | Category | Tags | Description | |
|---|---|---|---|---|---|
| SR 2.1 – Authorization Enforcement | prevention | Use Control | The system shall enforce assigned authorizations for all users and processes, controlling access to … | Edit | |
| SR 2.10 – Response to Audit Processing Failures | mitigation | Use Control | The system shall alert relevant personnel and take defined actions in the event that audit processin… | Edit | |
| SR 2.11 – Timestamps | prevention | Use Control | The system shall provide reliable, consistent timestamps for audit record generation. Timestamps sha… | Edit | |
| SR 2.12 – Non-Repudiation | prevention | Use Control | The system shall provide the capability to ensure that actions taken by users or processes cannot be… | Edit | |
| SR 2.2 – Wireless Use Control | prevention | Use Control | The system shall authorize, monitor, and control the use of wireless technologies including Wi-Fi, B… | Edit | |
| SR 2.3 – Use Control for Portable and Mobile Devices | prevention | Use Control | The system shall authorize, monitor, and control the use of portable and mobile devices such as USB … | Edit | |
| SR 2.4 – Mobile Code | prevention | Use Control | The system shall authorize, monitor, and control the use of mobile code (e.g., scripts, macros, appl… | Edit | |
| SR 2.5 – Session Lock | prevention | Use Control | The system shall implement a session lock after a configurable period of inactivity, requiring re-au… | Edit | |
| SR 2.6 – Remote Session Termination | prevention | Use Control | The system shall provide the capability to terminate remote sessions after a defined period of inact… | Edit | |
| SR 2.7 – Concurrent Session Control | prevention | Use Control | The system shall enforce a limit on the number of concurrent sessions for each user account or devic… | Edit | |
| SR 2.8 – Auditable Events | prevention | Use Control | The system shall generate audit records for defined auditable events including login attempts, acces… | Edit | |
| SR 2.9 – Audit Storage Capacity | prevention | Use Control | The system shall allocate sufficient audit record storage capacity and generate alerts when storage … | Edit |