mirror of
https://github.com/usnistgov/macos_security.git
synced 2026-03-04 01:12:00 +00:00
46 lines
1.5 KiB
YAML
46 lines
1.5 KiB
YAML
id: os_implement_cryptography
|
|
title: "Configure the System to Implement Approved Cryptography to Protect Information"
|
|
discussion: |
|
|
The information system _IS_ configured to implement approved cryptography to protect information.
|
|
|
|
Use of weak or untested encryption algorithms undermines the purposes of utilizing encryption to protect data. The operating system must implement cryptographic modules that adhere to the higher standards that have been tested, validated, and approved by the federal government.
|
|
|
|
macOS Big Sur has been submitted to the National Institute of Standards and Technology (NIST) and is in review for the cryptographic module for FIPS 140-3 validation.
|
|
|
|
link:https://csrc.nist.gov/Projects/cryptographic-module-validation-program/modules-in-process/Modules-In-Process-List[]
|
|
|
|
link:https://support.apple.com/en-us/HT201159[]
|
|
check: |
|
|
The technology supports this requirement and cannot be configured to be out of compliance. The technology inherently meets this requirement using FIPS Validated Cryptographic Modules.
|
|
fix: |
|
|
The technology inherently meets this requirement. No fix is required.
|
|
references:
|
|
cce:
|
|
- CCE-90935-8
|
|
cci:
|
|
- CCI-002450
|
|
800-53r5:
|
|
- SC-13
|
|
800-53r4:
|
|
- SC-13
|
|
disa_stig:
|
|
- N/A
|
|
srg:
|
|
- N/A
|
|
800-171r2:
|
|
- 3.13.11
|
|
macOS:
|
|
- "12.0"
|
|
tags:
|
|
- 800-53r5_low
|
|
- 800-53r5_moderate
|
|
- 800-53r5_high
|
|
- 800-53r4_low
|
|
- 800-53r4_moderate
|
|
- 800-53r4_high
|
|
- 800-171
|
|
- cnssi-1253
|
|
- inherent
|
|
mobileconfig: false
|
|
mobileconfig_info:
|