An error occurred:

© 2024 Xylok, LLC

Version: v2024.10.3-0fa4-8a67

Navigate

MA-4 (4)

MA-4 (4): Authentication / Separation Of Maintenance Sessions

The organization protects nonlocal maintenance sessions by:

MA-4 (4)(a): Employing [Assignment: organization-defined authenticators that are replay resistant]; and

MA-4 (4)(b): Separating the maintenance sessions from other network sessions with the information system by either:
- MA-4 (4)(b)(1): Physically separated communications paths; or
- MA-4 (4)(b)(2): Logically separated communications paths based upon encryption.

Supplemental

None

CIA Levels
Confidentiality	unknown
Integrity	unknown
Availability	unknown

Overlays
Int-A, Int-B, Int-C

Related Controls

The controls below (if any) were marked by NIST as being related to MA-4 (4).

Control	Description
SC-13	The information system implements [Assignment: organization-defined cryptographic uses and type of cryptography required for each use] in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.

Enhancements

The controls below (if any) add on to the requirements of MA-4 (4).

Control	Description
No controls

Related CCIs

The CCIs below are tied to MA-4 (4).

CCI	Definition
CCI-000884	The organization protects nonlocal maintenance sessions by employing organization-defined authenticators that are replay resistant.
CCI-001632	The organization protects nonlocal maintenance sessions by separating the maintenance session from other network sessions with the information system by either physically separated communications paths or logically separated communications paths based upon encryption.
CCI-002887	The organization defines the authenticators that are replay resistant which will be employed to protect nonlocal maintenance sessions.