NIST SP 800-171 & CMMC 2.0 3.13.13 Requirement:
Control and monitor the use of mobile code.
NIST SP 800-171 & CMMC 2.0 3.13.13 Requirement Explanation:
Mobile code technologies include Java, JavaScript, ActiveX, Postscript, PDF, Flash animations, and VBScript. Malware is often delivered via mobile code, hence it's use must be controlled.
Example NIST SP 800-171 & CMMC 2.0 3.13.13 Implementation:
Deploy DISA STIG settings for your web browsers. These settings include controls on the execution of mobile code.
NIST SP 800-171 & CMMC 2.0 3.13.13 Scenario(s):
- Scenario 1:
Your company deployed DISA STIG settings to secure it's Microsoft Edge browsers. The settings include controls restricting the execution of mobile code such as ActiveX and JavaScript. When a user visits a site that wants to execute ActiveX it is automatically blocked. The user is given the option to allow the activeX code to run. This is in accordance with your documented mobile code policy.
Quick & Simple
Discover Our Cybersecurity Compliance Solutions:
Whether you need to meet and maintain your compliance requirements, help your clients meet them, or verify supplier compliance we have the expertise and solution for you
NIST SP 800-171 & CMMC Compliance
Become compliant, provide compliance services, or verify partner compliance with NIST SP 800-171 and CMMC requirements.
HIPAA Compliance
Become compliant, provide compliance services, or verify partner compliance with HIPAA security rule requirements.
FAR 52.204-21 Compliance
Become compliant, provide compliance services, or verify partner compliance with FAR 52.204-21 Basic Safeguarding of Covered Contractor Information Systems requirements.
ISO 27001 Compliance
Become compliant, provide compliance services, or verify partner compliance with ISO 27001 requirements.