Documentation - V-202077

V-202077

Network Device Management Security Requirements Guide

CAT II

Title

The network device must generate unique session identifiers using a FIPS 140-2 approved random number generator.

Description

<VulnDiscussion>Sequentially generated session IDs can be easily guessed by an attacker. Employing the concept of randomness in the generation of unique session identifiers helps to protect against brute-force attacks to determine future session identifiers. Unique session IDs address man-in-the-middle attacks, including session hijacking or insertion of false information into a session. If the attacker is unable to identify or guess the session information related to pending application traffi...

Fix Text (Documentation Requirement)

Configure the network device to generate unique session identifiers using a FIPS 140-2 approved random number generator.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel