FedRAMP Controls / SC
SC-4 Information in Shared System Resources
Family SC
Baselines moderate
Mapped KSIs 4
Control statement
Prevent unauthorized and unintended information transfer via shared system resources.
Parameter placeholders {{ insert: param, … }} reference FedRAMP-set values in the resolved profile. Full parameter map is
preserved in the catalog database.
Covered by these Key Security Indicators
| KSI | Title | Category |
|---|---|---|
| KSI-CNA-03 | Enforce Traffic Flow Use logical networking and related capabilities to enforce traffic flow controls. | Cloud Native Architecture |
| KSI-IAM-05 | Least Privilege _Persistently_ ensure that identity and access management employs measures to ensure each user or device can only access the resources they need. | Identity and Access Management |
| KSI-PIY-04 | CISA Secure By Design _Persistently_ review the effectiveness of building security and privacy considerations into the Software Development Lifecycle and aligning with CISA Secure By Design principles. | Policy and Inventory |
| KSI-SVC-08 | Prevent Residual Risk _Persistently_ review plans, procedures, and the state of information resources after making changes to limit and remove unwanted residual elements that would _likely_ negatively affect the confidentiality, integrity, or availability of _federal customer data_. | Service Configuration |