1.7.8 Disable DES Cipher Suites

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

By disabling DES, there is a better chance of maintaining data confidentiality and integrity.

Solution

to disable des 56/56, ensure the following key is absent. if the key is present, ensure it is set to 0. hklm\system\currentcontrolset\control\securityproviders\schannel\ciphers\des 56/56\enabled

See Also

https://benchmarks.cisecurity.org/tools2/iis/CIS_Microsoft_IIS_7_Benchmark_v1.7.1.pdf

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-8

Plugin: Windows

Control ID: 02ba4a2d02fa112913e867001447887b4837695bcbe400dc465f9a6031e075db