NIST SP 800-171 & CMMC 2.0 Control 3.13.12 Requirement:
Prohibit remote activation of collaborative computing devices and provide indication of devices in use to users present at the device.
NIST SP 800-171 & CMMC 2.0 3.13.12 Requirement Explanation:
Collaborative computing devices include networked white boards, cameras, and microphones. Indication of use includes signals to users when collaborative computing devices are activated. Dedicated video conferencing systems, which rely on one of the participants calling or connecting to the other party to activate the video conference, are excluded.
Example NIST SP 800-171 & CMMC 2.0 3.13.12 Implementation:
Notification that a device is in use can include an indicator light that turns on or a specific text window that appears on screen. If a device does not have the means to alert a user when in use, the organization should provide manual means. Manual means can include, as necessary: paper notification on entryways, and locking entryways when a collaborative computing device is in use. This practice is not intended to include technologies that enable users to share the contents of their computer screens via the internet.
NIST SP 800-171 & CMMC 2.0 3.13.12 Scenario(s):
- Scenario 1:
You want to prevent the remote activation of microphones on your systems. To accomplish this you use group policy to prevent RDP sessions from allowing audio recordings.
Discover Our NIST SP 800-171 & CMMC 2.0 Solutions:
Compliance Accelerator
Power through compliance. Meet and maintain your NIST SP 800-171 & CMMC 2.0 compliance requirements.
Quantum Assessor
Transform your business. Create new revenue streams and provide scalability for your NIST SP 800-171 and CMMC 2.0 services.
Supply Chain Verifier
Trust is everything. Verify, monitor, and support subcontactor compliance.