O121-BP-023000 - Connections by mid-tier web and application systems to the Oracle DBMS from a DMZ or external network must be encrypted.


Multi-tier systems may be configured with the database and connecting middle-tier system located on an internal network, with the database located on an internal network behind a firewall and the middle-tier system located in a DMZ. In cases where either or both systems are located in the DMZ (or on networks external to DoD), network communications between the systems must be encrypted.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.


Configure communications between the DBMS and remote applications/application servers to use DoD-approved encryption.

See Also


Item Details


References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-219841r879887_rule, STIG-ID|O121-BP-023000, STIG-Legacy|SV-75937, STIG-Legacy|V-61447, Vuln-ID|V-219841

Plugin: OracleDB

Control ID: 84ecb56c1eff5a8a0c9a1c3ce425bcb5acd13d8749d4edac235949ea163e92e2