Systems requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.
DISA Rule
SV-225257r569185_rule
Vulnerability Number
V-225257
Group Title
SRG-OS-000185-GPOS-00079
Rule Version
WN12-00-000020
Severity
CAT II
CCI(s)
- CCI-001199 - The information system protects the confidentiality and/or integrity of organization-defined information at rest.
- CCI-002475 - The information system implements cryptographic mechanisms to prevent unauthorized modification of organization-defined information at rest on organization-defined information system components.
- CCI-002476 - The information system implements cryptographic mechanisms to prevent unauthorized disclosure of organization-defined information at rest on organization-defined information system components.
Weight
10
Fix Recommendation
Configure systems that require additional protections due to factors such as inadequate physical protection or sensitivity of the data to employ encryption to protect the confidentiality and integrity of all information at rest.
Check Contents
Verify systems that require additional protections due to factors such as inadequate physical protection or sensitivity of the data employ encryption to protect the confidentiality and integrity of all information at rest. If it does not, this is a finding.
Vulnerability Number
V-225257
Documentable
False
Rule Version
WN12-00-000020
Severity Override Guidance
Verify systems that require additional protections due to factors such as inadequate physical protection or sensitivity of the data employ encryption to protect the confidentiality and integrity of all information at rest. If it does not, this is a finding.
Check Content Reference
M
Target Key
4214
Comments