V-222596
Application Security and Development Security Technical Implementation Guide
Title
The application must protect the confidentiality and integrity of transmitted information.
Description
<VulnDiscussion>Without protection of the transmitted information, confidentiality and integrity may be compromised since unprotected communications can be intercepted and either read or altered. This requirement applies to those applications that transmit data, or allow access to data non-locally. Application and data owners have a responsibility for ensuring data integrity and confidentiality is maintained at every step of the data transfer and handling process. Application and data owners...
Fix Text (Documentation Requirement)
Configure all of the application systems to require TLS encryption in accordance with data protection requirements.