mirror of
https://github.com/usnistgov/macos_security.git
synced 2026-03-04 01:12:00 +00:00
41 lines
1.4 KiB
YAML
41 lines
1.4 KiB
YAML
id: os_implement_cryptography
|
|
title: "Configure the System to Implement Approved Cryptography to Protect Information"
|
|
discussion: |
|
|
The information system _IS_ configured to implement approved cryptography to protect information.
|
|
|
|
Use of weak or untested encryption algorithms undermines the purposes of utilizing encryption to protect data. The operating system must implement cryptographic modules that adhere to the higher standards that have been tested, validated, and approved by the federal government.
|
|
|
|
macOS Catalina is in process of receiving FIPS validation from the National Institute of Standards and Technology (NIST).
|
|
|
|
link:https://csrc.nist.gov/Projects/Cryptographic-Module-Validation-Program/Modules-In-Process/Modules-In-Process-List[]
|
|
link:https://support.apple.com/en-us/HT201159[]
|
|
check: |
|
|
The technology supports this requirement and cannot be configured to be out of compliance. The technology inherently meets this requirement using FIPS Validated Cryptographic Modules.
|
|
fix: |
|
|
The technology inherently meets this requirement. No fix is required.
|
|
references:
|
|
cce:
|
|
- CCE-84867-1
|
|
cci:
|
|
- CCI-002450
|
|
800-53r4:
|
|
- SC-13
|
|
disa_stig:
|
|
- N/A
|
|
srg:
|
|
- SRG-OS-000396-GPOS-00176
|
|
800-171r2:
|
|
- 3.13.11
|
|
macOS:
|
|
- "10.15"
|
|
tags:
|
|
- 800-171
|
|
- cnssi-1253
|
|
- fisma-low
|
|
- fisma-moderate
|
|
- fisma-high
|
|
- STIG
|
|
- inherent
|
|
mobileconfig: false
|
|
mobileconfig_info:
|