STIGQter: STIG Summary: Router Security Requirements Guide Version: 4 Release: 2 Benchmark Date: 23 Apr 2021:

The router must be configured to use encryption for routing protocol authentication.

DISA Rule

SV-207124r604135_rule

Vulnerability Number

V-207124

Group Title

SRG-NET-000168

Rule Version

SRG-NET-000168-RTR-000077

Severity

CAT II

CCI(s)

• CCI-000803 - The information system implements mechanisms for authentication to a cryptographic module that meet the requirements of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance for such authentication.

Weight

10

Fix Recommendation

Configure routing protocol authentication to encrypt the authentication key.

Check Contents

Review the router configuration.

For every protocol that affects the routing or forwarding tables (where information is exchanged between neighbors), verify that neighbor router authentication is encrypting the authentication key.

If authentication is not encrypting the authentication key, this is a finding.

Vulnerability Number

V-207124

Documentable

False

Rule Version

SRG-NET-000168-RTR-000077

Severity Override Guidance

Review the router configuration.

For every protocol that affects the routing or forwarding tables (where information is exchanged between neighbors), verify that neighbor router authentication is encrypting the authentication key.

If authentication is not encrypting the authentication key, this is a finding.

Check Content Reference

M

Target Key

2917

Comments