An error occurred:

© 2025 Xylok, LLC

Version: v2025.01.2-fe6a-066d

Navigate

MA-4(4)

MA-4(4): Authentication / Separation of Maintenance Sessions

The organization protects nonlocal maintenance sessions by:

(a): Employing [one of ]; and

(b): Separating the maintenance sessions from other network sessions with the information system by either:
- (1): Physically separated communications paths; or
- (2): Logically separated communications paths based upon encryption.

Supplemental

CIA Levels
Confidentiality	unknown
Integrity	unknown
Availability	unknown

Overlays
None

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to MA-4(4).

Control	Description
SC-13	The information system implements [one of ] in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.

Enhancements

The controls below (if any) add on to the requirements of MA-4(4).

Control	Description
No controls

Related CCIs

The CCIs below are tied to MA-4(4).

CCI	Definition
CCI-000884	Protect nonlocal maintenance sessions by employing organization-defined authenticators that are replay resistant.
CCI-001632	Protect nonlocal maintenance sessions by separating the maintenance session from other network sessions with the system by either physically separated communications paths or logically separated communications paths based upon encryption.
CCI-002887	Defines the authenticators that are replay resistant which will be employed to protect nonlocal maintenance sessions.