All wireless PDA clients used for remote access to DoD networks must enable AES encryption for the VPN.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-19897 | WIR-MOS-AND-034-02 | SV-35005r1_rule | ECWN-1 | Medium |
| Description |
|---|
| DoD data could be compromised if transmitted data is not secured with a compliant VPN. |
| STIG | Date |
|---|---|
| Android 2.2 (Dell) Security Technical Implementation Guide | 2014-08-26 |
Details
| Check Text ( C-34881r1_chk ) |
|---|
| This check is not applicable if the installed VPN client is not used for remote access to DoD networks. Interview the IAO and/or site wireless device administrator and inspect a sample (3-4) of site devices. Review VPN client specification sheets. Verify AES encryption is enabled for the VPN client. Mark as a finding if AES is not supported or is not enabled. |
| Fix Text (F-30398r1_fix) |
|---|
| Use only AES encryption with VPN client. |