STIGQter: STIG Summary: SDN Using NV Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 27 Feb 2017:

Access to the SDN management and orchestration systems must be authenticated using a FIPS-approved message authentication code algorithm.

DISA Rule

SV-87729r1_rule

Vulnerability Number

V-73077

Group Title

NET-SDN-003

Rule Version

NET-SDN-003

Severity

CAT II

CCI(s)

• CCI-000186 - The information system, for PKI-based authentication, enforces authorized access to the corresponding private key.

Weight

10

Fix Recommendation

Configure all management and orchestration systems within the SDN framework to require DOD PKI certificate-based authentication for access.

Check Contents

Review all management and orchestration systems within the SDN framework and verify that access to these components requires DOD PKI certificate-based authentication.

If access to the SDN management and orchestration systems does not require DOD PKI certificate-based authentication, this is a finding.

Vulnerability Number

V-73077

Documentable

False

Rule Version

NET-SDN-003

Severity Override Guidance

Review all management and orchestration systems within the SDN framework and verify that access to these components requires DOD PKI certificate-based authentication.

If access to the SDN management and orchestration systems does not require DOD PKI certificate-based authentication, this is a finding.

Check Content Reference

M

Target Key

3089

Comments