This control requires access control for portable and mobile devices. Mobile devices include portable storage media (e.g., USB memory sticks, external hard disk drives) and portable computing and communications devices with information storage capability (e.g., notebook/laptop computers, personal digital assistants, cellular telephones, digital cameras, and audio recording devices). Unless restrictions are put in place, a user connecting to the enclave via a mobile device can access/perform everything as those connected via Ethernet. Monitoring will ensure unauthorized access to the enclave's resources and data will not go undetected.
Monitoring for unauthorized connections of mobile devices to information systems is outside the scope of the firewall. |