AC-10: Concurrent Session Control

From NIST's SP800-53:

Limit the number of concurrent sessions for each [Assignment: organization-defined account and/or account type] to [Assignment: organization-defined number].

Cyber Threat Graph Context

Explore how this control relates to the wider threat graph

SP800-53 Control Mapped to NIST Cyber Security Framework

Generated from NISTs SP800-53/CSF Crosswalk mappings.

Control ID	Description
PR.AC-5	Network integrity is protected (e.g., network segregation, network segmentation)

MITRE ATT&CK Techniques

See which MITRE ATT&CK techniques this control helps to protect against.

ATT&CK ID	Title	Associated Tactics
T1528	Steal Application Access Token	Credential Access
T1137	Office Application Startup	Persistence
T1185	Browser Session Hijacking	Collection
T1137.002	Office Test	Persistence