AC-6.1: Authorize Access to Security Functions

An OSCAL Control

- organization-defined security functions (deployed in hardware, software, and firmware)
- individuals and roles
  individuals and roles with authorized access to security functions and security-relevant information are defined;
- security functions (deployed in hardware)
  security functions (deployed in hardware) for authorized access are defined;
- security functions (deployed in software)
  security functions (deployed in software) for authorized access are defined;
- security functions (deployed in firmware)
  security functions (deployed in firmware) for authorized access are defined;
- security-relevant information
  security-relevant information for authorized access is defined;