UCF STIG Viewer Logo

The network element must be configured to use cryptography to protect the integrity of remote access sessions.


Overview

Finding ID Version Rule ID IA Controls Severity
V-34529 SRG-NET-000063-IDPS-NA SV-45371r1_rule Medium
Description
Remote access services enable users outside of the enclave to have access to data and services within the private network. In many instances these connections traverse the Internet. Remote access sessions must use encryption to protect the integrity of information traveling through a public network, such as the Internet. Requiring remote access sessions to the enclave to traverse an encrypted tunnel makes the session difficult to alter the content. Protecting the integrity of remote access sessions is not a function of the IDPS. If needed, remote management sessions to the IDPS must traverse the network remote access infrastructure before accessing the IDPS.
STIG Date
Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide 2012-11-19

Details

Check Text ( C-42720r1_chk )
This requirement is NA for IDPS. No fix required.
Fix Text (F-38768r1_fix)
This requirement is NA for IDPS. No fix required.