5.01 OAS - 'General - Review requirement for integrity and confidentiality requirements'


Only implement OAS if a local integrity/encryption policy does not already exist, e.g., IPSec or other means for providing
integrity/confidentiality services.
Level 2, Not Scorable
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.as it requires a manual review if this requirement exists for each organization.

See Also