An error occurred:

Check: 3.077

Windows 2003 DC STIG: 3.077 (in version v6 r40)

Title

The system is not configured to use FIPS compliant Algorithms for Encryption, Hashing, and Signing. (Cat II impact)

Discussion

This setting ensures that the system uses algorithms that are FIPS compliant for encryption, hashing, and signing. FIPS compliant algorithms meet specific standards established by the U.S. Government and should be the algorithms used for all OS encryption functions.

Check Content

Fix Text

Configure the policy value for Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options -> “System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing” to “Enabled”.

Additional Identifiers

Rule ID: SV-29531r1_rule

Vulnerability ID: V-3383

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-002450

Implement organization-defined types of cryptography for each specified cryptography use.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
SC-13

Cryptographic Protection