An error occurred:

© 2024 Xylok, LLC

Version: v2024.12.1-0560-0560

Navigate

MA-4(4)

MA-4(4): Authentication / Separation of Maintenance Sessions

The organization protects nonlocal maintenance sessions by:

(a): Employing [organization-defined authenticators that are replay resistant]; and

(b): Separating the maintenance sessions from other network sessions with the information system by either:
- (1): Physically separated communications paths; or
- (2): Logically separated communications paths based upon encryption.

Supplemental

CIA Levels
Confidentiality	unknown
Integrity	high
Availability	unknown

Overlays
None

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to MA-4(4).

Control	Description
SC-13	The information system implements [organization-defined cryptographic uses and type of cryptography required for each use] in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.

Enhancements

The controls below (if any) add on to the requirements of MA-4(4).

Control	Description
No controls

Related CCIs

The CCIs below are tied to MA-4(4).

CCI	Definition
CCI-000884	Protect nonlocal maintenance sessions by employing organization-defined authenticators that are replay resistant.
CCI-001632	Protect nonlocal maintenance sessions by separating the maintenance session from other network sessions with the system by either physically separated communications paths or logically separated communications paths based upon encryption.
CCI-002887	Defines the authenticators that are replay resistant which will be employed to protect nonlocal maintenance sessions.