Navigate

IA-2(8)

IA-2(8): Access to Accounts — Replay Resistant

Implement replay-resistant authentication mechanisms for access to [one or more of "privileged accounts"/"non-privileged accounts"].

Supplemental

Authentication processes resist replay attacks if it is impractical to achieve successful authentications by replaying previous authentication messages. Replay-resistant techniques include protocols that use nonces or challenges such as time synchronous or cryptographic authenticators.

CIA Levels
Confidentiality	low
Integrity	low
Availability	unknown

Overlays
CMMC, DAF Baseline

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to IA-2(8).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of IA-2(8).

Control	Description
No controls

Related CCIs

The CCIs below are tied to IA-2(8).

CCI	Definition
CCI-001941	Implement replay-resistant authentication mechanisms for access to privileged accounts and/or non-privileged accounts.