Documentation - V-222396

V-222396

Application Security and Development Security Technical Implementation Guide

CAT II

Title

The application must implement DoD-approved encryption to protect the confidentiality of remote access sessions.

Description

<VulnDiscussion>Without confidentiality protection mechanisms, unauthorized individuals may gain access to sensitive information via a remote access session. Remote access is access to DoD nonpublic information systems by an authorized user (or an information system) communicating through an external, non-organization-controlled network. Remote access methods include, for example, dial-up, broadband, and wireless. Encryption provides a means to secure the remote connection to prevent unauthori...

Fix Text (Documentation Requirement)

Design and configure applications to use TLS encryption to protect the confidentiality of remote access sessions.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel