AC-18(1): Authentication and Encryption

Control Family:

Access Control

Parent Control:

AC-18: Wireless Access

CSF v1.1 References:

PR.PT-4

Threats Addressed:

Information Disclosure
Lateral Movement

Baselines:

Moderate
High

Previous Version:

NIST Special Publication 800-53 Revision 4:
AC-18(1): Authentication And Encryption

Control Statement

Protect wireless access to the system using authentication of [Assignment (one or more): users, devices] and encryption.

Supplemental Guidance

Wireless networking capabilities represent a significant potential vulnerability that can be exploited by adversaries. To protect systems with wireless access points, strong authentication of users and devices along with strong encryption can reduce susceptibility to threats by adversaries involving wireless technologies.

Control Statement

Supplemental Guidance

Related Controls

NIST Special Publication 800-53 Revision 5

Critical Security Controls Version 8

Critical Security Controls Version 7.1