IVS-12: Wireless Security

Control Family:

Infrastructure & Virtualization Security

CSF v1.1 References:

PR.AC-5
PR.DS-5
PR.PT-3
PR.PT-4

PF v1.0 References:

PR.AC-P5
PR.DS-P5
PR.PT-P2
PR.PT-P3

Threats Addressed:

Lateral Movement

Control Statement

Policies and procedures shall be established, and supporting business processes and technical measures implemented, to protect wireless network environments, including the following:

Perimeter firewalls implemented and configured to restrict unauthorized traffic
Security settings enabled with strong encryption for authentication and transmission, replacing vendor default settings (e.g., encryption keys, passwords, and SNMP community strings)
User access to wireless network devices restricted to authorized personnel
The capability to detect the presence of unauthorized (rogue) wireless network devices for a timely disconnect from the network

Control Statement

Related Controls

NIST Special Publication 800-53 Revision 5

NIST Special Publication 800-53 Revision 4