Detections
Analytics

1.221 WN10-SO-000230

Information

The system must be configured to use FIPS-compliant algorithms for encryption, hashing, and signing.

GROUP ID: V-220942RULE ID: SV-220942r959006

This setting ensures that the system uses algorithms that are FIPS-compliant for encryption, hashing, and signing. FIPS-compliant algorithms meet specific standards established by the U.S. Government and must be the algorithms used for all OS encryption functions.

Solution

Configure the policy value for

Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> 'System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing'

to 'Enabled'.

See Also

https://workbench.cisecurity.org/benchmarks/23869

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-13, CCI|CCI-002450, Rule-ID|SV-220942r959006_rule, STIG-ID|WN10-SO-000230, Vuln-ID|V-220942

Plugin: Windows

Control ID: dc16bde3a309b0156717e9be77fa4528e011c57738bc4af8160bf0624e2da6fb