← Back to catalog
AC-6(8)

Privilege Levels for Code Execution

Access Control (AC)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description

Prevent the following software from executing at higher privilege levels than users executing the software: [assignment].

Discussion

In certain situations, software applications or programs need to execute with elevated privileges to perform required functions. However, depending on the software functionality and configuration, if the privileges required for execution are at a higher level than the privileges assigned to organizational users invoking such applications or programs, those users may indirectly be provided with greater privileges than assigned.

Implementation guidance

No content available.

CSF 2.0 crosswalk

No CSF mappings exist for this control.