Network WLAN Bridge Platform STIG Version Comparison

There are 1 differences between versions v7 r1 (July 23, 2021) (the "left" version) and v7 r2 (April 27, 2023) (the "right" version).

Check WLAN-NW-000600 was changed between these two versions. Green, underlined text was added, red, struck-out text was removed.

The regular view of the left check and right check may be easier to read.

Title

WLAN components must be FIPS 140-2 or FIPS 140-3 certified. certified and configured to operate in FIPS mode.

Check Content

Review the WLAN equipment specification and verify it is FIPS 140-2/3 (CMVP) certified for data in transit, including authentication credentials. If credentials. Verify the component is configured to operate in FIPS mode. If the WLAN equipment is not is FIPS 140-2/3 (CMVP) certified, certified or is not configured to operate in FIPS mode, this is a finding.

Discussion

If the DoD WLAN components (WLAN AP, controller, or client) are not NIST FIPS 140-2/FIPS 140-3 (Cryptographic Module Validation Program, CMVP) certified, the WLAN system may not adequately protect sensitive unclassified DoD data from compromise during transmission.

Fix

Use WLAN equipment that is FIPS 140-2/3 (CMVP) certified. Configure the component to operate in FIPS mode.