The KVM switch is not configured to use encrypted communications with FIPS 140-1/2 validated cryptography.

From Keyboard, Video, Mouse Switch Security STIG

Part of Network KVM Encryption

Associated with IA controls: ECNK-1

SV-6910r1_rule The KVM switch is not configured to use encrypted communications with FIPS 140-1/2 validated cryptography.

Vulnerability discussion

Because all administrative traffic contains sensitive data such as unencrypted passwords, it will be encrypted to protect it from interception. The KVM switch will be configured to require encryption for all communications via the network. NIST FIPS 140-1/2 validated cryptography will be used.The IAO or SA will ensure that the KVM switch is configured to use encrypted communications using FIPS 140-1/2 validated cryptography.

Check content

The reviewer will, with the assistance of the IAO or SA, verify that the network attached KVM switch is configured for encryption using FIPS 140-1/2 validated cryptography.

Fix text

Reconfigure the network KVM switch to use FIPS-140-1/2 validated cryptography for all communications across the network.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer