SC-8(1): Cryptographic Protection

Control Family:

System and Communications Protection

Parent Control:

SC-8: Transmission Confidentiality and Integrity

CSF v1.1 References:

PR.DS-2

Threats Addressed:

Tampering
Information Disclosure

Baselines:

Moderate
High

Previous Version:

NIST Special Publication 800-53 Revision 4:
SC-8(1): Cryptographic Or Alternate Physical Protection

Control Statement

Implement cryptographic mechanisms to [Assignment (one or more): prevent unauthorized disclosure of information, detect changes to information] during transmission.

Supplemental Guidance

Encryption protects information from unauthorized disclosure and modification during transmission. Cryptographic mechanisms that protect the confidentiality and integrity of information during transmission include TLS and IPSec. Cryptographic mechanisms used to protect information integrity include cryptographic hash functions that have applications in digital signatures, checksums, and message authentication codes.

Control Statement

Supplemental Guidance

Related Controls

NIST Special Publication 800-53 Revision 5

Critical Security Controls Version 8

Critical Security Controls Version 7.1