MA-4(6): Cryptographic Protection

Control Family:

Maintenance

Parent Control:

MA-4: Nonlocal Maintenance

CSF v1.1 References:

PR.MA-2

Threats Addressed:

Tampering
Information Disclosure
Lateral Movement

Baselines:

(Not part of any baseline)

Previous Version:

NIST Special Publication 800-53 Revision 4:
MA-4(6): Cryptographic Protection

Control Statement

Implement the following cryptographic mechanisms to protect the integrity and confidentiality of nonlocal maintenance and diagnostic communications: [Assignment: organization-defined cryptographic mechanisms].

Supplemental Guidance

Failure to protect nonlocal maintenance and diagnostic communications can result in unauthorized individuals gaining access to organizational information. Unauthorized access during remote maintenance sessions can result in a variety of hostile actions, including malicious code insertion, unauthorized changes to system parameters, and exfiltration of organizational information. Such actions can result in the loss or degradation of mission or business capabilities.

Control Statement

Supplemental Guidance

Related Controls

NIST Special Publication 800-53 Revision 5