This is a potential security issue, you are being redirected to https://csrc.nist.gov.
A situation in which an information system or application receives protection from privacy controls (or portions of privacy controls) that are developed, implemented, assessed, authorized, and monitored by entities other than those responsible for the system or application; entities either internal or external to the organization where the system or application resides. See Common Control.
NIST SP 800-53A Rev. 4 [Superseded]