Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Release Notes
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Release Notes
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Audits
References
CCI
CCI-002422
CCI
CCI|CCI-002422
Title
Maintain the confidentiality and/or integrity of information during reception.
Reference Item Details
Reference:
CCI - DISA Control Correlation Identifier
Category:
2024
Audit Items
View all Reference Audit Items
Name
Plugin
Audit Name
1.22 UBTU-24-100800
Unix
CIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT I
1.23 UBTU-24-100810
Unix
CIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT I
1.55 UBTU-22-255010
Unix
CIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT I
1.56 UBTU-22-255015
Unix
CIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT I
1.203 RHEL-09-255010
Unix
CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.204 RHEL-09-255015
Unix
CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.329 OL08-00-040159
Unix
CIS Oracle Linux 8 STIG v1.0.0 CAT II
1.330 OL08-00-040160
Unix
CIS Oracle Linux 8 STIG v1.0.0 CAT II
1.452 RHEL-09-672050
Unix
CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
5.3.1 Ensure SSH is installed
Unix
CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.3.2 Ensure SSH is running
Unix
CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
ALMA-09-042810 - All AlmaLinux OS 9 networked systems must implement SSH to protect the confidentiality and integrity of transmitted and received information, including information being prepared for transmission.
Unix
DISA CloudLinux AlmaLinux OS 9 STIG v1r3
ALMA-09-042920 - All AlmaLinux OS 9 networked systems must have the OpenSSH server installed.
Unix
DISA CloudLinux AlmaLinux OS 9 STIG v1r3
ALMA-09-043140 - AlmaLinux OS 9 must implement DOD-approved encryption in the bind package.
Unix
DISA CloudLinux AlmaLinux OS 9 STIG v1r3
AOSX-13-000035 - The macOS system must implement DoD-approved encryption to protect the confidentiality and integrity of remote access sessions including transmitted data and data during preparation for transmission.
Unix
DISA STIG Apple Mac OSX 10.13 v2r5
AOSX-14-000011 - The macOS system must implement DoD-approved encryption to protect the confidentiality and integrity of remote access sessions including transmitted data and data during preparation for transmission - OpenSSH version
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-000011 - The macOS system must implement DoD-approved encryption to protect the confidentiality and integrity of remote access sessions including transmitted data and data during preparation for transmission - SSHD currently running
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-000011 - The macOS system must implement DoD-approved encryption to protect the confidentiality and integrity of remote access sessions including transmitted data and data during preparation for transmission - SSHD service disabled
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
APPL-11-000011 - The macOS system must disable the SSHD service.
Unix
DISA STIG Apple macOS 11 v1r8
APPL-11-000011 - The macOS system must disable the SSHD service.
Unix
DISA STIG Apple macOS 11 v1r5
AS24-U1-000030 - The Apache web server must use cryptography to protect the integrity of remote sessions
Unix
DISA STIG Apache Server 2.4 Unix Server v3r2 Middleware
AS24-U1-000030 - The Apache web server must use cryptography to protect the integrity of remote sessions.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r2
AS24-W1-000030 - The Apache web server must use encryption strength in accordance with the categorization of data hosted by the Apache web server when remote connections are provided - ssl_module
Windows
DISA STIG Apache Server 2.4 Windows Server v3r3
AS24-W1-000030 - The Apache web server must use encryption strength in accordance with the categorization of data hosted by the Apache web server when remote connections are provided - ssl_module
Windows
DISA STIG Apache Server 2.4 Windows Server v2r3
AS24-W1-000030 - The Apache web server must use encryption strength in accordance with the categorization of data hosted by the Apache web server when remote connections are provided - SSLProtocol
Windows
DISA STIG Apache Server 2.4 Windows Server v2r3
AS24-W1-000030 - The Apache web server must use encryption strength in accordance with the categorization of data hosted by the Apache web server when remote connections are provided - SSLProtocol
Windows
DISA STIG Apache Server 2.4 Windows Server v3r3
AS24-W2-000890 - An Apache web server must maintain the confidentiality of controlled information during transmission through the use of an approved TLS version - SSLEngine
Windows
DISA STIG Apache Server 2.4 Windows Site v2r2
AS24-W2-000890 - An Apache web server must maintain the confidentiality of controlled information during transmission through the use of an approved TLS version - SSLProtocol
Windows
DISA STIG Apache Server 2.4 Windows Site v2r2
Catalina - Enable SSH for Remote Access Sessions
Unix
NIST macOS Catalina v1.5.0 - All Profiles
CD12-00-003000 - PostgreSQL must maintain the confidentiality and integrity of information during reception.
PostgreSQLDB
DISA STIG Crunchy Data PostgreSQL DB v3r1
CNTR-R2-000010 - Rancher RKE2 must protect authenticity of communications sessions with the use of FIPS-validated 140-2 or 140-3 security requirements for cryptographic modules.
Unix
DISA Rancher Government Solutions RKE2 STIG v2r3
DB2X-00-009200 - DB2 must maintain the confidentiality and integrity of information during reception.
Windows
DISA STIG IBM DB2 v10.5 LUW v2r1 OS Windows
DB2X-00-009200 - DB2 must maintain the confidentiality and integrity of information during reception.
Unix
DISA STIG IBM DB2 v10.5 LUW v2r1 OS Linux
DKER-EE-001050 - TCP socket binding for all Docker Engine - Enterprise nodes in a Universal Control Plane (UCP) cluster must be disabled.
Unix
DISA STIG Docker Enterprise 2.x Linux/Unix v2r2
EP11-00-009600 - The EDB Postgres Advanced Server must maintain the confidentiality and integrity of information during reception.
Windows
EDB PostgreSQL Advanced Server v11 Windows OS Audit v2r4
EP11-00-009600 - The EDB Postgres Advanced Server must maintain the confidentiality and integrity of information during reception.
PostgreSQLDB
EDB PostgreSQL Advanced Server v11 DB Audit v2r4
EPAS-00-009600 - The EDB Postgres Advanced Server must maintain the confidentiality and integrity of information during reception.
PostgreSQLDB
EnterpriseDB PostgreSQL Advanced Server DB v2r1
ESXI-80-000247 - The ESXi host must use DOD-approved encryption to protect the confidentiality of network sessions.
Unix
DISA VMware vSphere 8.0 ESXi STIG v2r3 Unix
ESXi: esxi-8.tls-profile
Unix
VMware vSphere Security Configuration and Hardening Guide 8.0 - Bare Metal Host
ESXi: esxi-8.tls-protocols
VMware
VMware vSphere Security Configuration and Hardening Guide
IBMW-LS-000520 - The WebSphere Liberty Server must use FIPS 140-2 approved encryption modules when authenticating users and processes.
Unix
DISA IBM WebSphere Liberty Server STIG v2r2
IISW-SI-000249 - The IIS 8.5 website must maintain the confidentiality and integrity of information during preparation for transmission and during reception.
Windows
DISA IIS 8.5 Site v2r9
MADB-10-009000 - MariaDB must maintain the confidentiality and integrity of information during reception.
MySQLDB
DISA MariaDB Enterprise 10.x v2r3 DB
MD3X-00-000770 - MongoDB must maintain the confidentiality and integrity of information during reception.
Unix
DISA STIG MongoDB Enterprise Advanced 3.x v2r3 OS
MD4X-00-006100 - MongoDB must maintain the confidentiality and integrity of information during reception.
Unix
DISA STIG MongoDB Enterprise Advanced 4.x v1r4 OS
MD7X-00-008900 MongoDB must maintain the confidentiality and integrity of information during reception.
Unix
DISA MongoDB Enterprise Advanced 7.x STIG v1r1
OH12-1X-000331 - OHS must have the LoadModule ossl_module directive enabled to maintain the confidentiality and integrity of information during reception.
Unix
DISA STIG Oracle HTTP Server 12.1.3 v2r3
OH12-1X-000332 - OHS must have the SSLFIPS directive enabled to maintain the confidentiality and integrity of information during reception.
Unix
DISA STIG Oracle HTTP Server 12.1.3 v2r3
OH12-1X-000333 - OHS must have the SSLEngine, SSLProtocol, and SSLWallet directives enabled and configured to maintain the confidentiality and integrity of information during reception - SSLEngine
Unix
DISA STIG Oracle HTTP Server 12.1.3 v2r3
OH12-1X-000333 - OHS must have the SSLEngine, SSLProtocol, and SSLWallet directives enabled and configured to maintain the confidentiality and integrity of information during reception - SSLProtocol
Unix
DISA STIG Oracle HTTP Server 12.1.3 v2r3
