Check: WLAN-NW-000400
Network WLAN AP-IG Platform STIG:
WLAN-NW-000400
(in versions v7 r3 through v7 r1)
Title
WLAN components must be Wi-Fi Alliance certified with WPA2 or WPA3. (Cat II impact)
Discussion
Wi-Fi Alliance certification ensures compliance with DoD interoperability requirements between various WLAN products.
Check Content
Review the WLAN equipment specification and verify it is Wi-Fi Alliance certified with either the older WPA2 certification or the newer WPA3 certification. WPA3 is preferred but not required at this time. If the WLAN equipment is not Wi-Fi Alliance certified with WPA2 or WPA3, this is a finding.
Fix Text
Use WLAN equipment that is Wi-Fi Alliance certified with WPA2 or WPA3.
Additional Identifiers
Rule ID: SV-243209r720082_rule
Vulnerability ID: V-243209
Group Title: SRG-NET-000063
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001453 |
The information system implements cryptographic mechanisms to protect the integrity of remote access sessions. |
Controls
Number | Title |
---|---|
AC-17 (2) |
Protection Of Confidentiality / Integrity Using Encryption |