Navigate

CCI-000068

CCI-000068 Definition

Implement cryptographic mechanisms to protect the confidentiality of remote access sessions.

Status
Type	CheckType.technical

Master Assessment Datasheet

Implementation Guidance

Determine if cryptographic mechanisms are implemented to protect the confidentiality and integrity of remote access sessions.

Validation Procedures

Examine: [SELECT FROM: Access control policy; procedures addressing remote access to the system; system design documentation; system configuration settings and associated documentation; cryptographic mechanisms and associated configuration documentation; system audit records; system security plan; other relevant documents or records]. Interview: [SELECT FROM: System/network administrators; organizational personnel with information security responsibilities; system developers]. Test: [SELECT FROM: Cryptographic mechanisms protecting confidentiality and integrity of remote access sessions].

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-000068.

Control	Description
AC-17(2)	Implement cryptographic mechanisms to protect the confidentiality and integrity of remote access sessions.