5.12 OAS - 'SSL Tab - SSL is preferred method. If PKI is not possible, use OAS Integrity/Encryption.'

Information

OAS Integrity/Encryption should only be used if required because of non-SSL clients.

See Also

https://workbench.cisecurity.org/files/580