NIST 800-171 v2
110 security requirements available
3.13.4Derived Requirement
System and Communications Protection
Security Requirement
Prevent unauthorized and unintended information transfer via shared system resources.
Discussion
The control of information in shared system resources (e.g., registers, cache memory, main memory, hard disks) is also commonly referred to as object reuse and residual information protection. This requirement prevents information produced by the actions of prior users or roles (or the actions of processes acting on behalf of prior users or roles) from being available to any current users or roles (or current processes acting on behalf of current users or roles) that obtain access to shared system resources after those resources have been released back to the system. This requirement also applies to encrypted representations of information. This requirement does not address information remanence, which refers to residual representation of data that has been nominally deleted; covert channels (including storage or timing channels) where shared resources are manipulated to violate information flow restrictions; or components within systems for which there are only single users or roles.
- Framework
- NIST SP 800-171 Rev 2
- Family
- System and Communications Protection
- Requirement Type
- derived
Related Frameworks
2 paths across 2 frameworks
Related Frameworks
NIST 800-531 mapping
SC-4
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-001090
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
Related STIGs
126 STIGs reach this control through 3 CCIs via 800-53 control SC-4. Expand a row to see the responsible NICE and O*NET roles.
Operating System — Desktop
3 STIGs
Operating System — Desktop
3 STIGsMicrosoft Windows 10 Security Technical Implementation Guide
32025-02-256 of 261 findings match
H3M3
Microsoft Windows 11 Security Technical Implementation Guide
V2R72026-02-125 of 262 findings match
H3M2
Microsoft Windows 11 Security Technical Implementation Guide
22025-05-155 of 258 findings match
H3M2
Operating System — Server
34 STIGs
Operating System — Server
34 STIGsMicrosoft Windows Server 2019 Security Technical Implementation Guide
32025-05-235 of 275 findings match
H2M3
Microsoft Windows Server 2019 Security Technical Implementation Guide
V3R82026-02-125 of 282 findings match
H2M3
Microsoft Windows Server 2022 Security Technical Implementation Guide
22025-05-155 of 275 findings match
H2M3
Microsoft Windows Server 2022 Security Technical Implementation Guide
V2R82026-02-135 of 282 findings match
H2M3
Microsoft Windows Server 2025 Security Technical Implementation Guide
V1R12026-02-205 of 284 findings match
H2M3
Oracle Linux 8 Security Technical Implementation Guide
22025-05-133 of 374 findings match
M1L2
Oracle Linux 8 Security Technical Implementation Guide
V2R82026-02-133 of 375 findings match
M1L2
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
V2R72026-02-053 of 366 findings match
M1L2
Show 26 more STIGs in this category →Hide additional STIGs
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
22025-05-143 of 369 findings match
M1L2
Amazon Linux 2023 Security Technical Implementation Guide
V1R32026-02-272 of 187 findings match
M2
Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide
22025-05-162 of 172 findings match
M1L1
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
V2R82026-02-062 of 188 findings match
M1L1
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
22025-05-162 of 187 findings match
M1L1
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
V1R52026-02-062 of 194 findings match
M1L1
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
12025-05-162 of 194 findings match
M1L1
Cloud Linux AlmaLinux OS 9 Security Technical Implementation Guide
V1R62026-02-272 of 439 findings match
M2
CloudLinux AlmaLinux OS 9 Security Technical Implementation Guide
12025-05-222 of 445 findings match
M2
Oracle Linux 9 Security Technical Implementation Guide
12025-05-082 of 456 findings match
M2
Oracle Linux 9 Security Technical Implementation Guide
V1R52026-02-172 of 448 findings match
M2
Red Hat Enterprise Linux 10 Security Technical Implementation Guide
V1R12026-03-112 of 434 findings match
M2
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
22025-05-142 of 450 findings match
M2
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
V2R82026-02-052 of 446 findings match
M2
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
V1R42026-02-102 of 208 findings match
M2
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
12025-05-082 of 210 findings match
M2
SUSE Linux Enterprise Server 12 Security Technical Implementation Guide
32025-05-142 of 211 findings match
M1L1
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
V2R72026-02-192 of 214 findings match
M1L1
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
22025-05-142 of 216 findings match
M1L1
Anduril NixOS Security Technical Implementation Guide
V1R22025-08-191 of 103 findings match
M1
Anduril NixOS Security Technical Implementation Guide
12024-10-251 of 104 findings match
M1
General Purpose Operating System Security Requirements Guide
32024-12-041 of 198 findings match
M1
General Purpose Operating System Security Requirements Guide
V3R32025-09-221 of 203 findings match
M1
Oracle Linux 7 Security Technical Implementation Guide
32025-05-081 of 243 findings match
L1
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
V2R52026-02-191 of 226 findings match
M1
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
22025-05-081 of 226 findings match
M1
Operating System — Mainframe
8 STIGs
Operating System — Mainframe
8 STIGsIBM z/OS ACF2 Security Technical Implementation Guide
92025-06-242 of 226 findings match
M2
IBM z/OS ACF2 Security Technical Implementation Guide
V9R82026-03-092 of 225 findings match
M2
IBM z/OS RACF Security Technical Implementation Guide
V9R82026-03-092 of 222 findings match
M2
IBM z/OS RACF Security Technical Implementation Guide
92025-06-242 of 224 findings match
M2
IBM z/OS TSS Security Technical Implementation Guide
V9R82026-03-092 of 230 findings match
M2
IBM z/OS TSS Security Technical Implementation Guide
92025-06-242 of 231 findings match
M2
CA IDMS Security Technical Implementation Guide
V2R12024-09-131 of 74 findings match
M1
IBM zVM Using CA VM:Secure Security Technical Implementation Guide
V2R22022-08-311 of 77 findings match
M1
Operating System — Mobile
36 STIGs
Operating System — Mobile
36 STIGsApple iOS/iPadOS 18 Security Technical Implementation Guide
12025-06-309 of 92 findings match
M9
Apple iOS/iPadOS 18 Security Technical Implementation Guide
V2R22025-12-019 of 92 findings match
M9
Apple iOS/iPadOS 26 Security Technical Implementation Guide
V1R22025-12-019 of 92 findings match
M9
Apple visionOS 2 Security Technical Implementation Guide
V1R12025-09-305 of 50 findings match
M5
Apple visionOS 26 Security Technical Implementation Guide
V1R12026-03-105 of 51 findings match
M5
Samsung Android 16 COBO Security Technical Implementation Guide
V1R32026-02-064 of 45 findings match
M3L1
Samsung Android OS 14 with Knox 3.x COBO Security Technical Implementation Guide
22024-12-064 of 36 findings match
M3L1
Samsung Android OS 15 with Knox 3.x COBO Security Technical Implementation Guide
12024-12-104 of 37 findings match
M3L1
Show 28 more STIGs in this category →Hide additional STIGs
Google Android 13 COBO Security Technical Implementation Guide
22024-12-043 of 31 findings match
M2L1
Google Android 13 COPE Security Technical Implementation Guide
22024-12-043 of 36 findings match
M2L1
Google Android 14 COBO Security Technical Implementation Guide
V2R42026-02-063 of 38 findings match
M2L1
Google Android 14 COBO Security Technical Implementation Guide
22024-12-043 of 30 findings match
M2L1
Google Android 14 COPE Security Technical Implementation Guide
22024-12-043 of 35 findings match
M2L1
Google Android 14 COPE Security Technical Implementation Guide
V2R42026-02-123 of 43 findings match
M2L1
Google Android 15 COBO Security Technical Implementation Guide
V1R42026-02-063 of 44 findings match
M2L1
Google Android 15 COBO Security Technical Implementation Guide
12024-12-053 of 36 findings match
M2L1
Google Android 15 COPE Security Technical Implementation Guide
V1R42026-02-123 of 47 findings match
M2L1
Google Android 15 COPE Security Technical Implementation Guide
12024-12-053 of 39 findings match
M2L1
Google Android 16 COBO Security Technical Implementation Guide
V1R22026-02-063 of 42 findings match
M2L1
Google Android 16 COPE Security Technical Implementation Guide
V1R22026-02-123 of 45 findings match
M2L1
Samsung Android 16 COPE Security Technical Implementation Guide
V1R22026-02-113 of 48 findings match
M2L1
Samsung Android OS 13 with Knox 3.x COBO Security Technical Implementation Guide
22024-12-063 of 30 findings match
M3
Samsung Android OS 14 with Knox 3.x COPE Security Technical Implementation Guide
22024-12-063 of 39 findings match
M2L1
Samsung Android OS 15 with Knox 3.x COPE Security Technical Implementation Guide
12024-12-103 of 40 findings match
M2L1
Zebra Technologies Android 14 COBO Security Technical Implementation Guide
V1R12026-02-223 of 38 findings match
M2L1
Zebra Technologies Android 14 COPE Security Technical Implementation Guide
V1R12026-02-223 of 43 findings match
M2L1
Honeywell Android 13 COBO Security Technical Implementation Guide
V1R12025-05-072 of 32 findings match
M2
Honeywell Android 13 COPE Security Technical Implementation Guide
V1R12025-05-072 of 36 findings match
M2
Samsung Android OS 13 with Knox 3.x COPE Security Technical Implementation Guide
22024-12-062 of 30 findings match
M2
Zebra Android 13 COBO Security Technical Implementation Guide
V1R12024-12-112 of 31 findings match
M2
Zebra Android 13 COPE Security Technical Implementation Guide
V1R12024-12-112 of 35 findings match
M2
Google Android 13 BYOAD Security Technical Implementation Guide
12024-02-061 of 23 findings match
M1
Google Android 14 MDFPP 3.3 BYOAD Security Technical Implementation Guide
V1R22025-08-191 of 23 findings match
M1
Google Android 14 MDFPP 3.3 BYOAD Security Technical Implementation Guide
12024-02-201 of 23 findings match
M1
Samsung Android 14 MDFPP 3.3 BYOAD Security Technical Implementation Guide
12024-02-211 of 25 findings match
M1
Samsung Android 15 MDFPP 3.3 BYOAD Security Technical Implementation Guide
12025-04-291 of 26 findings match
M1
Network Device
7 STIGs
Network Device
7 STIGsDomain Name System (DNS) Security Requirements Guide
V4R22025-12-192 of 119 findings match
M2
Riverbed NetIM OS Security Technical Implementation Guide
V1R12025-10-022 of 154 findings match
M2
BIND 9.x Security Technical Implementation Guide
V3R22026-02-251 of 73 findings match
M1
BIND 9.x Security Technical Implementation Guide
22024-02-151 of 70 findings match
L1
Domain Name System (DNS) Security Requirements Guide
42024-07-021 of 118 findings match
M1
Palo Alto Networks Prisma Cloud Compute Security Technical Implementation Guide
V2R32026-02-131 of 31 findings match
M1
Palo Alto Networks Prisma Cloud Compute Security Technical Implementation Guide
22024-12-061 of 31 findings match
M1
Database
26 STIGs
Database
26 STIGsDatabase Security Requirements Guide
V4R52026-02-263 of 142 findings match
M3
Database Security Requirements Guide
42024-12-043 of 142 findings match
M3
MariaDB Enterprise 10.x Security Technical Implementation Guide
V2R52026-03-023 of 107 findings match
M3
MariaDB Enterprise 10.x Security Technical Implementation Guide
22024-12-053 of 110 findings match
M3
Microsoft SQL Server 2022 Instance Security Technical Implementation Guide
V1R42026-02-253 of 79 findings match
M3
Microsoft SQL Server 2022 Instance Security Technical Implementation Guide
12025-05-303 of 80 findings match
M3
MS SQL Server 2016 Instance Security Technical Implementation Guide
V3R62025-12-083 of 84 findings match
M3
MS SQL Server 2016 Instance Security Technical Implementation Guide
32025-06-113 of 101 findings match
M3
Show 18 more STIGs in this category →Hide additional STIGs
Redis Enterprise 6.x Security Technical Implementation Guide
V2R22024-09-043 of 71 findings match
M3
Crunchy Data Postgres 16 Security Technical Implementation Guide
V1R22026-02-272 of 111 findings match
M2
Crunchy Data Postgres 16 Security Technical Implementation Guide
12024-06-172 of 111 findings match
M2
Crunchy Data PostgreSQL Security Technical Implementation Guide
V3R12024-08-272 of 113 findings match
M2
EnterpriseDB Postgres Advanced Server (EPAS) Security Technical Implementation Guide
V2R12024-08-272 of 118 findings match
M2
IBM DB2 V10.5 LUW Security Technical Implementation Guide
V2R12023-06-112 of 93 findings match
M2
MongoDB Enterprise Advanced 7.x Security Technical Implementation Guide
V1R12024-09-272 of 50 findings match
M2
MongoDB Enterprise Advanced 8.x Security Technical Implementation Guide
V1R12026-02-202 of 55 findings match
M2
Oracle Database 19c Security Technical Implementation Guide
V1R52026-02-252 of 96 findings match
M2
Oracle Database 19c Security Technical Implementation Guide
12025-06-242 of 96 findings match
M2
Oracle MySQL 8.0 Security Technical Implementation Guide
V2R22024-09-042 of 100 findings match
M2
MarkLogic Server v9 Security Technical Implementation Guide
V3R22024-09-041 of 80 findings match
M1
Microsoft Azure SQL Database Security Technical Implementation Guide
V2R32025-06-111 of 76 findings match
M1
Microsoft Azure SQL Managed Instance Security Technical Implementation Guide
V1R12025-10-071 of 84 findings match
M1
Microsoft SQL Server 2022 Database Security Technical Implementation Guide
V1R32026-02-251 of 23 findings match
M1
Microsoft SQL Server 2022 Database Security Technical Implementation Guide
12025-05-291 of 22 findings match
M1
MS SQL Server 2016 Database Security Technical Implementation Guide
V3R52026-03-091 of 23 findings match
M1
MS SQL Server 2016 Database Security Technical Implementation Guide
32025-06-111 of 28 findings match
M1
Web / Application Server
2 STIGs
Web / Application Server
2 STIGsApplication Security and Development Security Technical Implementation Guide
62025-02-121 of 286 findings match
M1
Application Security and Development Security Technical Implementation Guide
V6R42025-09-091 of 286 findings match
M1
Virtualization / Container
10 STIGs
Virtualization / Container
10 STIGsRed Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
22025-05-156 of 83 findings match
M6
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
V2R52025-12-046 of 83 findings match
M6
Container Platform Security Requirements Guide
V2R42025-09-102 of 188 findings match
M2
Container Platform Security Requirements Guide
22025-05-152 of 187 findings match
M2
Mirantis Kubernetes Engine Security Technical Implementation Guide
V2R12024-08-272 of 44 findings match
M2
Nutanix Acropolis GPOS Security Technical Implementation Guide
V1R12026-02-241 of 106 findings match
M1
Virtual Machine Manager Security Requirements Guide
22024-12-061 of 193 findings match
M1
Virtual Machine Manager Security Requirements Guide
V2R32025-09-101 of 198 findings match
M1
Show 2 more STIGs in this category →Hide additional STIGs
VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 Security Technical Implementation Guide
V2R12024-07-111 of 106 findings match
M1
VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 Security Technical Implementation Guide
V1R12023-10-291 of 104 findings match
M1