5.01 OAS - 'General - Review requirement for integrity and confidentiality requirements'

Information

Only implement OAS if a local integrity/encryption policy does not already exist, e.g., IPSec or other means for providing

See Also

https://workbench.cisecurity.org/files/580