The operating system must employ cryptographic mechanisms to prevent unauthorized disclosure of information during transmission unless otherwise protected by alternative physical measures.

The operating system must employ cryptographic mechanisms to prevent unauthorized disclosure of information during transmission unless otherwise protected by alternative physical measures.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-33143	SRG-OS-000161-NA	SV-43541r1_rule		Medium

Description
Ensuring the confidentiality of transmitted information requires operating systems take feasible measures to employ transmission layer security. This requirement applies to communications across internal and external networks. Rationale for non-applicability: This vulnerability is better addressed by CCI-001130, which deals with confidentiality in transit.

STIG	Date
Mobile Operating System Security Requirements Guide	2013-07-03

Details

Check Text ( C-41403r1_chk )
This requirement is NA for the Mobile OS SRG.

Fix Text (F-37043r1_fix)
The requirement is NA. No fix is required.