STIGViewer Trial workspace — loading your subscription…

NIST 800-53 Rev 5

424 controls available

AC-22lowmoderatehigh

Publicly Accessible Content

Access Control

Control Statement

Designate individuals authorized to make information publicly accessible; Train authorized individuals to ensure that publicly accessible information does not contain nonpublic information; Review the proposed content of information prior to posting onto the publicly accessible system to ensure that nonpublic information is not included; and Review the content on the publicly accessible system for nonpublic information {{ insert: param, ac-22_odp }} and remove such information, if discovered.

Discussion

In accordance with applicable laws, executive orders, directives, policies, regulations, standards, and guidelines, the public is not authorized to have access to nonpublic information, including information protected under the [PRIVACT](#18e71fec-c6fd-475a-925a-5d8495cf8455) and proprietary information. Publicly accessible content addresses systems that are controlled by the organization and accessible to the public, typically without identification or authentication. Posting information on non-organizational systems (e.g., non-organizational public websites, forums, and social media) is covered by organizational policy. While organizations may have individuals who are responsible for developing and implementing policies about the information that can be made publicly accessible, publicly accessible content addresses the management of the individuals who make such information publicly accessible.

Framework
NIST SP 800-53 Rev 5
Family
Access Control
Baselines
low, moderate, high

Related Frameworks

7 paths across 2 frameworks
NIST 800-1711 mapping
3.1.22
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI6 mappings
CCI-001473
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001474
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001475
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001476
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001477
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001478
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent

Related STIGs

No STIGs in the current catalog reference any CCI mapped to this control.