The operating system must enforce dynamic information flow control based on policy that must allow or disallow information flows based upon changing conditions or operational considerations.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-OS-000011-NA | SRG-OS-000011-NA | SRG-OS-000011-NA_rule | Medium |
| Description |
|---|
| Information flow control regulates where information is allowed to travel within an information system and between information systems (as opposed to who is allowed to access the information) and without explicit regard to subsequent accesses to the information. The operating system must enforce flow control decisions based upon changing conditions. |
| STIG | Date |
|---|---|
| Red Hat Enterprise Linux 6 Security Technical Implementation Guide | 2013-02-05 |
Details
| Check Text ( C-SRG-OS-000011-NA_chk ) |
|---|
| RHEL6 cannot support this requirement without assistance from an external application, policy, or service. This requirement is NA. |
| Fix Text (F-SRG-OS-000011-NA_fix) |
|---|
| This requirement is NA. No fix is required. |