NIST SP 800-53 Rev 5: AC-6 Least Privilege 3.1 3.1.5 3.1.7 Access Control
NIST resource that defines the requirements for the principle of least privilege
SEARCH RESULTS
NIST SP 800-53: AC-5 Separation of Duties 3.1 3.1.4 Access Control
This publication from NIST provides an overview of the AC-5 Separation of Duties Control.
NIST SP 800-53: AC–17 Remote Access 3.1 3.1.12 Access Control
The special publication provides an overview of the importance and implementation of remote access controls.
NIST SP 800-63: Digital Identity Guidelines 3.1 3.1.1 3.1.2 Access Control
This NIST Special Publication covers identity proofing and authentication of users interacting with government IT systems over open networks.
NIST SP 800-63: Digital Identity Guidelines (FAQs) 3.1 3.1.1 3.1.2 Access Control
This list covers NIST FAQs for Special Publication (SP) 800-63, Digital Identity Guidelines and provides additional clarification to stakeholders.
NIST SP 800-97: Establishing Wireless Robust Security Networks: A Guide to IEEE 802.11i 3.1 3.1.16 3.1.17 Access Control
This NIST Special Publication covers IEEE 802.11i-based wireless LANs only.
North Carolina – Access Control Policy 3.1 3.1.3 Access Control
The NC policy describes common security controls (e.g., proxies, gateways, routers, firewalls, guards, encrypted tunnels, web content filters, data loss prevention) and their application in controlling information flows. (See Section AC-4 – Information Flow Enforcement, p. 6)
Northwestern Polytechnic – IT Access Control and User Access Management Policy 3.1 3.1.1 3.1.2 Access Control
A sample user access management policy for Northwestern Polytechnic
OPSWAT – Removable Media Policy: Guidelines & Best Practices 3.1 3.1.21 3.7 3.7.4 3.8 3.8.5 3.8.6 3.8.7 3.8.8 Access Control Maintenance Media Protection
Implementing a removable media policy helps organizations control how employees use USB drives, external hard drives, and other portable storage devices. The main purpose is to prevent data breaches and malware infections while keeping sensitive company information secure. These policies set clear rules about what's allowed and what isn't, helping businesses stay compliant with important security standards like ISO 27001, NIST, and Department of Defense requirements.
Palantir Blog – Windows Privilege Abuse: Auditing, Detection, and Defense 3.1 3.1.7 Access Control
This article provides an in-depth overview of how to audit, detect and defend against specific privilege abuse actions in Windows.