The information system must protect wireless access to the system using encryption.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-30532	SRG-APP-NA	SV-40242r1_rule		Medium

Description
Wireless technologies include, but are not limited to, microwave, satellite, packet radio (UHF/VHF), 802.11x, and Bluetooth. Wireless networks use authentication protocols (e.g., EAP/TLS, PEAP), which provide credential protection and mutual authentication. In certain situations, wireless signals may radiate beyond the confines and control of organization-controlled facilities. When systems connect to a wireless access point there is a requirement to authenticate. Authentication applies to user, device, or both as necessary. Authentication data needs to be protected by encryption. This is a wireless access requirement regarding WAP encryption. This requirement does not apply to applications.

Description

Wireless technologies include, but are not limited to, microwave, satellite, packet radio (UHF/VHF), 802.11x, and Bluetooth. Wireless networks use authentication protocols (e.g., EAP/TLS, PEAP), which provide credential protection and mutual authentication. In certain situations, wireless signals may radiate beyond the confines and control of organization-controlled facilities. When systems connect to a wireless access point there is a requirement to authenticate. Authentication applies to user, device, or both as necessary. Authentication data needs to be protected by encryption. This is a wireless access requirement regarding WAP encryption. This requirement does not apply to applications.

STIG	Date
Application Security Requirements Guide	2011-12-28

Details

Check Text ( None )
None

Fix Text (None)
None