Security Requirements for 03.13.06 Network Communications – Deny by Default – Allow by Exception

This requirement applies to inbound and outbound network communications traffic at the system boundary and at identified points within the system. A deny-all, allow-by-exception network communications traffic policy ensures that only essential and approved connections are allowed.

View CPRT 03.13.06

  1. 03.13.06

    Deny network communications traffic by default, and allow network communications traffic by exception.