UCF STIG Viewer Logo

The KVM switch is not configured to use encrypted communications with FIPS 140-1/2 validated cryptography.


Overview

Finding ID Version Rule ID IA Controls Severity
V-6713 KVM03.009.00 SV-6910r1_rule ECNK-1 High
Description
Because all administrative traffic contains sensitive data such as unencrypted passwords, it will be encrypted to protect it from interception. The KVM switch will be configured to require encryption for all communications via the network. NIST FIPS 140-1/2 validated cryptography will be used. The IAO or SA will ensure that the KVM switch is configured to use encrypted communications using FIPS 140-1/2 validated cryptography.
STIG Date
Keyboard Video and Mouse Switch STIG 2014-08-04

Details

Check Text ( C-2725r1_chk )
The reviewer will, with the assistance of the IAO or SA, verify that the network attached KVM switch is configured for encryption using FIPS 140-1/2 validated cryptography.
Fix Text (F-6320r1_fix)
Reconfigure the network KVM switch to use FIPS-140-1/2 validated cryptography for all communications across the network.