SC — SYSTEM AND COMMUNICATIONS PROTECTION
SC-10: NETWORK DISCONNECT
NIST 800-53R4 Membership SC-10:
The information system terminates the network connection associated with a communications session at the end of the session or after [Assignment: organization-defined time period] of inactivity.
This control applies to both internal and external networks. Terminating network connections associated with communications sessions include, for example, de-allocating associated TCP/IP address/port pairs at the operating system level, or de-allocating networking assignments at the application level if multiple application sessions are using a single, operating system-level network connection. Time periods of inactivity may be established by organizations and include, for example, time periods by type of network access or for specific network accesses.
NO CONTROL ENHANCEMENTS
- NO REFERENCES