Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The network element must use approved cryptography to protect the confidentiality of remote access sessions.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-34528 | SRG-NET-000062-IDPS-NA | SV-45370r1_rule | Medium |
| Description |
|---|
| Remote access services enable users outside of the enclave to have access to data and services within the private network. In many instances these connections traverse the Internet. Remote access sessions must use encryption to protect the confidentiality of information traveling through a public network such as the Internet. Requiring remote access sessions to the enclave to traverse an encrypted tunnel, authorized on a per client basis, makes the session difficult to snoop or spoof. Protecting the confidentiality of remote access sessions is not a function of the IDPS. If needed, remote management sessions to the IDPS must traverse the network remote access infrastructure before accessing the IDPS. |
| STIG | Date |
|---|---|
| Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide | 2012-11-19 |
Details
| Check Text ( C-42719r1_chk ) |
|---|
| This requirement is NA for IDPS. No fix required. |
| Fix Text (F-38767r1_fix) |
|---|
| This requirement is NA for IDPS. No fix required. |