Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-34529 | SRG-NET-000063-IDPS-NA | SV-45371r1_rule | Medium |
Description |
---|
Remote access services enable users outside of the enclave to have access to data and services within the private network. In many instances these connections traverse the Internet. Remote access sessions must use encryption to protect the integrity of information traveling through a public network, such as the Internet. Requiring remote access sessions to the enclave to traverse an encrypted tunnel makes the session difficult to alter the content. Protecting the integrity of remote access sessions is not a function of the IDPS. If needed, remote management sessions to the IDPS must traverse the network remote access infrastructure before accessing the IDPS. |
STIG | Date |
---|---|
Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide | 2012-11-19 |
Check Text ( C-42720r1_chk ) |
---|
This requirement is NA for IDPS. No fix required. |
Fix Text (F-38768r1_fix) |
---|
This requirement is NA for IDPS. No fix required. |