NIST 800-53 Rev 5
424 controls available
SI-16moderatehigh
Memory Protection
System and Information Integrity
Control Statement
Implement the following controls to protect the system memory from unauthorized code execution: {{ insert: param, si-16_odp }}.
Discussion
Some adversaries launch attacks with the intent of executing code in non-executable regions of memory or in memory locations that are prohibited. Controls employed to protect memory include data execution prevention and address space layout randomization. Data execution prevention controls can either be hardware-enforced or software-enforced with hardware enforcement providing the greater strength of mechanism.
- Framework
- NIST SP 800-53 Rev 5
- Family
- System and Information Integrity
- Baselines
- moderate, high
Related Frameworks
2 paths across 1 framework
Related Frameworks
CCI2 mappings
CCI-002823
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002824
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
Related STIGs
52 STIGs reach this control through 2 CCIs. Expand a row to see the responsible NICE and O*NET roles.
Operating System — Desktop
3 STIGs
Operating System — Desktop
3 STIGsMicrosoft Windows 10 Security Technical Implementation Guide
32025-02-253 of 261 findings match
H2M1
Microsoft Windows 11 Security Technical Implementation Guide
22025-05-153 of 258 findings match
H2M1
Microsoft Windows 11 Security Technical Implementation Guide
V2R72026-02-122 of 262 findings match
H1M1
Operating System — Server
34 STIGs
Operating System — Server
34 STIGsRed Hat Enterprise Linux 10 Security Technical Implementation Guide
V1R12026-03-116 of 434 findings match
M6
Cloud Linux AlmaLinux OS 9 Security Technical Implementation Guide
V1R62026-02-274 of 439 findings match
M4
CloudLinux AlmaLinux OS 9 Security Technical Implementation Guide
12025-05-224 of 445 findings match
M4
Oracle Linux 9 Security Technical Implementation Guide
12025-05-084 of 456 findings match
M3L1
Oracle Linux 9 Security Technical Implementation Guide
V1R52026-02-174 of 448 findings match
M3L1
Amazon Linux 2023 Security Technical Implementation Guide
V1R32026-02-272 of 187 findings match
M2
Anduril NixOS Security Technical Implementation Guide
12024-10-252 of 104 findings match
M2
Anduril NixOS Security Technical Implementation Guide
V1R22025-08-192 of 103 findings match
M2
Show 26 more STIGs in this category →Hide additional STIGs
Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide
22025-05-162 of 172 findings match
M2
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
22025-05-162 of 187 findings match
M2
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
V2R82026-02-062 of 188 findings match
M2
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
12025-05-162 of 194 findings match
M2
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
V1R52026-02-062 of 194 findings match
M2
General Purpose Operating System Security Requirements Guide
32024-12-042 of 198 findings match
M2
General Purpose Operating System Security Requirements Guide
V3R32025-09-222 of 203 findings match
M2
Oracle Linux 8 Security Technical Implementation Guide
22025-05-132 of 374 findings match
M2
Oracle Linux 8 Security Technical Implementation Guide
V2R82026-02-132 of 375 findings match
M2
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
22025-05-142 of 369 findings match
M2
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
V2R72026-02-052 of 366 findings match
M2
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
22025-05-142 of 450 findings match
M2
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
V2R82026-02-052 of 446 findings match
M2
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
12025-05-082 of 210 findings match
M2
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
V1R42026-02-102 of 208 findings match
M2
SUSE Linux Enterprise Server 12 Security Technical Implementation Guide
32025-05-142 of 211 findings match
M2
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
22025-05-142 of 216 findings match
M2
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
V2R72026-02-192 of 214 findings match
M2
Microsoft Windows Server 2019 Security Technical Implementation Guide
32025-05-231 of 275 findings match
M1
Microsoft Windows Server 2019 Security Technical Implementation Guide
V3R82026-02-121 of 282 findings match
M1
Microsoft Windows Server 2022 Security Technical Implementation Guide
22025-05-151 of 275 findings match
M1
Microsoft Windows Server 2022 Security Technical Implementation Guide
V2R82026-02-131 of 282 findings match
M1
Microsoft Windows Server 2025 Security Technical Implementation Guide
V1R12026-02-201 of 284 findings match
M1
Oracle Linux 7 Security Technical Implementation Guide
32025-05-081 of 243 findings match
M1
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
22025-05-081 of 226 findings match
M1
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
V2R52026-02-191 of 226 findings match
M1
Operating System — Mainframe
2 STIGs
Operating System — Mainframe
2 STIGsMainframe Product Security Requirements Guide
32024-12-051 of 193 findings match
M1
Mainframe Product Security Requirements Guide
V3R42025-09-101 of 194 findings match
M1
Network Device
1 STIG
Network Device
1 STIGRiverbed NetIM OS Security Technical Implementation Guide
V1R12025-10-022 of 154 findings match
M2
Web / Application Server
2 STIGs
Web / Application Server
2 STIGsApplication Security and Development Security Technical Implementation Guide
62025-02-121 of 286 findings match
H1
Application Security and Development Security Technical Implementation Guide
V6R42025-09-091 of 286 findings match
H1
Virtualization / Container
10 STIGs
Virtualization / Container
10 STIGsNutanix Acropolis GPOS Security Technical Implementation Guide
V1R12026-02-242 of 106 findings match
M2
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
22025-05-152 of 83 findings match
M2
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
V2R52025-12-042 of 83 findings match
M2
Virtual Machine Manager Security Requirements Guide
22024-12-062 of 193 findings match
M2
Virtual Machine Manager Security Requirements Guide
V2R32025-09-102 of 198 findings match
M2
Container Platform Security Requirements Guide
22025-05-151 of 187 findings match
M1
Container Platform Security Requirements Guide
V2R42025-09-101 of 188 findings match
M1
VMware vSphere 7.0 vCenter Appliance Photon OS Security Technical Implementation Guide
V1R42024-12-161 of 113 findings match
M1
Show 2 more STIGs in this category →Hide additional STIGs
VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 Security Technical Implementation Guide
V1R12023-10-291 of 104 findings match
M1
VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 Security Technical Implementation Guide
V2R12024-07-111 of 106 findings match
M1