AC-4.4: Flow Control of Encrypted Information

Statement

• Prevent encrypted information from bypassing information flow control mechanisms by ac-04.04_odp.02 .

  • • Requirement:

      The service provider must support Agency requirements to comply with M-21-31 (https://www.whitehouse.gov/wp-content/uploads/2021/08/M-21-31-Improving-the-Federal-Governments-Investigative-and-Remediation-Capabilities-Related-to-Cybersecurity-Incidents.pdf) and M-22-09 (https://www.whitehouse.gov/wp-content/uploads/2022/01/M-22-09.pdf).