UCF STIG Viewer Logo

All wireless PDA clients used for remote access to DoD networks must enable AES encryption for the VPN.


Finding ID Version Rule ID IA Controls Severity
V-19897 WIR-MOS-AND-034-02 SV-35005r1_rule ECWN-1 Medium
DoD data could be compromised if transmitted data is not secured with a compliant VPN.
Android 2.2 (Dell) Security Technical Implementation Guide 2014-08-26


Check Text ( C-34881r1_chk )
This check is not applicable if the installed VPN client is not used for remote access to DoD networks.
Interview the IAO and/or site wireless device administrator and inspect a sample (3-4) of site devices. Review VPN client specification sheets. Verify AES encryption is enabled for the VPN client. Mark as a finding if AES is not supported or is not enabled.

Fix Text (F-30398r1_fix)
Use only AES encryption with VPN client.