03.10.08: Access Control for Transmission

Control Familly: Physical Protection

SPRS: N/A

Top Ten Failed Requirement: N/A

Supporting Publications:

  • N/A

Referenced in: N/A

Control Type: N/A

CPCSC Level 2: 03.10.08

CMMC Level(s): N/A

Derived From: NIST SP 800-53r5

  • PE-04

Control physical access to system distribution and transmission lines within organizational facilities.

Discussion:

Safeguarding measures applied to system distribution and transmission lines prevent accidental damage, disruption, and physical tampering. Such measures may also be necessary to prevent eavesdropping or the modification of unencrypted transmissions. Safeguarding measures used to control physical access to system distribution and transmission lines include disconnected or locked spare jacks, locked wiring closets, cabling protection with conduit or cable trays, and wiretapping sensors.

Assessment Methods and Objectives

Examine [SELECT FROM: physical protection policy and procedures; procedures for access control for transmission mediums; system design documentation; facility communications and wiring diagrams; list of physical security safeguards applied to system distribution and transmission lines; procedures for access control for display medium; facility layout of system components; list of output devices and associated outputs that require physical access controls; actual displays from system components; physical access control logs or records for areas containing output devices and related outputs; system security plan; other relevant documents or records]

Interview [SELECT FROM: personnel with physical access control responsibilities; personnel with information security responsibilities]

Test [SELECT FROM: processes for access control for distribution and transmission lines; mechanisms for supporting or implementing access control for distribution and transmission lines; processes for access control to output devices; mechanisms for supporting or implementing access control for output devices]

NIST SP 800-171A r3 Determining Statements Determine if:

A.03.10.08: physical access to system distribution and transmission lines within organizational facilities is controlled.