7.7 Ensure NULL Cipher Suites is disabled

Information

The NULL cipher does not provide data confidentiality or integrity. It is recommended that the NULL cipher be disabled.

Rationale:

By disabling the NULL cipher, there is a better chance of maintaining data confidentiality and integrity.

Solution

To disable the NULL cipher, ensure the following key is absent. If the key is present, ensure it is set to 0.

HKLM System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\NULL\Enabled

See Also

https://workbench.cisecurity.org/benchmarks/14293

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-13

Plugin: Windows

Control ID: fc0cb49d53e11668ffed0099e60b31f5bedf0ab347bfee8f39e1888865daa9bb