Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Audits
References
CCI
CCI-002420
CCI
CCI|CCI-002420
Title
Maintain the confidentiality and/or integrity of information during preparation for transmission.
Reference Item Details
Reference:
CCI - DISA Control Correlation Identifier
Category:
2024
Audit Items
View all Reference Audit Items
Name
Plugin
Audit Name
5.3.1 Ensure SSH is installed
Unix
CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.3.2 Ensure SSH is running
Unix
CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
AIX7-00-002097 - AIX must protect the confidentiality and integrity of transmitted information during preparation for transmission and maintain the confidentiality and integrity of information during reception and disable all non-encryption network access methods.
Unix
DISA STIG AIX 7.x v3r1
AOSX-13-000035 - The macOS system must implement DoD-approved encryption to protect the confidentiality and integrity of remote access sessions including transmitted data and data during preparation for transmission.
Unix
DISA STIG Apple Mac OSX 10.13 v2r5
APPL-11-000011 - The macOS system must disable the SSHD service.
Unix
DISA STIG Apple macOS 11 v1r8
APPL-11-000011 - The macOS system must disable the SSHD service.
Unix
DISA STIG Apple macOS 11 v1r5
AS24-W2-000890 - An Apache web server must maintain the confidentiality of controlled information during transmission through the use of an approved TLS version - SSLEngine
Windows
DISA STIG Apache Server 2.4 Windows Site v2r1
AS24-W2-000890 - An Apache web server must maintain the confidentiality of controlled information during transmission through the use of an approved TLS version - SSLProtocol
Windows
DISA STIG Apache Server 2.4 Windows Site v2r1
BIND-9X-001200 - A BIND 9.x server implementation must maintain the integrity and confidentiality of DNS information while it is being prepared for transmission, in transmission, and in use and t must perform integrity verification and data origin verification for all DNS information.
Unix
DISA BIND 9.x STIG v2r3
Catalina - Enable SSH for Remote Access Sessions
Unix
NIST macOS Catalina v1.5.0 - All Profiles
O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures.
Windows
DISA STIG Oracle 11.2g v2r5 Windows
O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures.
Unix
DISA STIG Oracle 11.2g v2r5 Linux
OH12-1X-000325 - OHS must have the SSLFIPS directive enabled to maintain the confidentiality and integrity of information during preparation for transmission.
Unix
DISA STIG Oracle HTTP Server 12.1.3 v2r2
OL07-00-040300 - The Oracle Linux operating system must be configured so that all networked systems have SSH installed.
Unix
DISA Oracle Linux 7 STIG v3r1
OL08-00-040159 - All OL 8 networked systems must have SSH installed.
Unix
DISA Oracle Linux 8 STIG v2r2
OL08-00-040160 - All OL 8 networked systems must have and implement SSH to protect the confidentiality and integrity of transmitted and received information, as well as information during preparation for transmission.
Unix
DISA Oracle Linux 8 STIG v2r2
PHTN-30-000026 - The Photon operating system must use an OpenSSH server version that does not support protocol 1.
Unix
DISA STIG VMware vSphere 7.0 Photon OS v1r3
PHTN-40-000013 The Photon operating system must have the OpenSSL FIPS provider installed to protect the confidentiality of remote access sessions.
Unix
DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1
PHTN-67-000068 - The Photon operating system must use OpenSSH for remote maintenance sessions.
Unix
DISA STIG VMware vSphere 6.7 Photon OS v1r6
RHEL-07-040300 - The Red Hat Enterprise Linux operating system must be configured so that all networked systems have SSH installed.
Unix
DISA Red Hat Enterprise Linux 7 STIG v3r15
RHEL-07-040310 - The Red Hat Enterprise Linux operating system must be configured so that all networked systems use SSH for confidentiality and integrity of transmitted and received information as well as information during preparation for transmission.
Unix
DISA Red Hat Enterprise Linux 7 STIG v3r15
RHEL-09-255010 - All RHEL 9 networked systems must have SSH installed.
Unix
DISA Red Hat Enterprise Linux 9 STIG v2r2
RHEL-09-255015 - All RHEL 9 networked systems must have and implement SSH to protect the confidentiality and integrity of transmitted and received information, as well as information during preparation for transmission.
Unix
DISA Red Hat Enterprise Linux 9 STIG v2r2
SOL-11.1-060090 - The operating system must maintain the integrity of information during aggregation, packaging, and transformation in preparation for transmission.
Unix
DISA STIG Solaris 11 X86 v3r1
SOL-11.1-060090 - The operating system must maintain the integrity of information during aggregation, packaging, and transformation in preparation for transmission.
Unix
DISA STIG Solaris 11 SPARC v3r1
SOL-11.1-060120 - The operating system must maintain the confidentiality of information during aggregation, packaging, and transformation in preparation for transmission.
Unix
DISA STIG Solaris 11 X86 v3r1
SOL-11.1-060120 - The operating system must maintain the confidentiality of information during aggregation, packaging, and transformation in preparation for transmission.
Unix
DISA STIG Solaris 11 SPARC v3r1
SQL4-00-035000 - The confidentiality and integrity of information managed by SQL Server must be maintained during preparation for transmission.
MS_SQLDB
DISA STIG SQL Server 2014 Instance DB Audit v2r4
UBTU-16-030420 - All networked systems must have and implement SSH to protect the confidentiality and integrity of transmitted and received information, as well as information during preparation for transmission - installed
Unix
DISA STIG Ubuntu 16.04 LTS v2r3
UBTU-16-030420 - All networked systems must have and implement SSH to protect the confidentiality and integrity of transmitted and received information, as well as information during preparation for transmission - running
Unix
DISA STIG Ubuntu 16.04 LTS v2r3
UBTU-22-255010 - Ubuntu 22.04 LTS must have SSH installed.
Unix
DISA STIG Canonical Ubuntu 22.04 LTS v2r2
UBTU-22-255015 - Ubuntu 22.04 LTS must use SSH to protect the confidentiality and integrity of transmitted information.
Unix
DISA STIG Canonical Ubuntu 22.04 LTS v2r2
VCRP-70-000004 - Envoy must use only Transport Layer Security (TLS) 1.2 for the protection of client connections.
Unix
DISA STIG VMware vSphere 7.0 RhttpProxy v1r1
WBLC-08-000235 - Oracle WebLogic must protect the integrity of applications during the processes of data aggregation, packaging, and transformation in preparation for deployment.
Unix
Oracle WebLogic Server 12c Linux v2r1 Middleware
WBLC-08-000235 - Oracle WebLogic must protect the integrity of applications during the processes of data aggregation, packaging, and transformation in preparation for deployment.
Windows
Oracle WebLogic Server 12c Windows v2r1
WBLC-08-000235 - Oracle WebLogic must protect the integrity of applications during the processes of data aggregation, packaging, and transformation in preparation for deployment.
Unix
Oracle WebLogic Server 12c Linux v2r1
WN16-00-000290 - Protection methods such as TLS, encrypted VPNs, or IPsec must be implemented if the data owner has a strict requirement for ensuring data integrity and confidentiality is maintained at every step of the data transfer and handling process.
Windows
DISA Windows Server 2016 STIG v2r9
WN19-00-000260 - Windows Server 2019 must implement protection methods such as TLS, encrypted VPNs, or IPsec if the data owner has a strict requirement for ensuring data integrity and confidentiality is maintained at every step of the data transfer and handling process.
Windows
DISA Windows Server 2019 STIG v3r2
WN22-00-000260 - Windows Server 2022 must implement protection methods such as TLS, encrypted VPNs, or IPsec if the data owner has a strict requirement for ensuring data integrity and confidentiality is maintained at every step of the data transfer and handling process.
Windows
DISA Windows Server 2022 STIG v2r2
