3.14.2SPRS: 5 points

Provide protection from malicious code at designated locations

System and Information Integrity · NIST SP 800-171 Rev 2

Requirement

Provide protection from malicious code at designated locations within organizational systems.

Discussion

Designated locations include system entry and exit points which may include firewalls, remote-access servers, workstations, electronic mail servers, web servers, proxy servers, notebook computers, and mobile devices. Malicious code includes viruses, worms, Trojan horses, and spyware. Malicious code can be encoded in various formats (e.g., UUENCODE, Unicode), contained within compressed or hidden files, or hidden in files using techniques such as steganography. Malicious code can be inserted into

How this affects your SPRS score

Under the DoD Assessment Methodology, a perfect SPRS score is 110. If this control is not met, 5 points is subtracted from your score.

Want your estimated SPRS score?

Answer 15 quick questions covering the highest-impact controls and get an instant estimate.

Estimate my SPRS score →

Source: NIST SP 800-171 Rev 2 (public domain) · SPRS weighting per the DoD Assessment Methodology · This is reference information, not an official assessment.

Support is offline

Enable live chat support. We use Crisp which stores a cookie and may process your email. See our Privacy Policy.

Support is offline

Enable live chat support. We use Crisp which stores a cookie and may process your email. See our Privacy Policy.