Detections
Analytics

CCI|CCI-002476

Title

Implement cryptographic mechanisms to prevent unauthorized disclosure of organization-defined information at rest on organization-defined system components.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
AIOS-01-080006 - Apple iOS must require a valid password be successfully entered before the mobile device data is unencrypted.MDMMobileIron - DISA Apple iOS 10 v1r3
AIOS-01-080006 - Apple iOS must require a valid password be successfully entered before the mobile device data is unencrypted.MDMAirWatch - DISA Apple iOS 10 v1r3
APPL-14-005020 - The macOS system must enforce FileVault.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
APPL-15-005020 - The macOS system must enforce FileVault.UnixDISA Apple macOS 15 (Sequoia) STIG v1r1
AS24-W2-000890 - An Apache web server must maintain the confidentiality of controlled information during transmission through the use of an approved TLS version - SSLEngineWindowsDISA STIG Apache Server 2.4 Windows Site v2r1
AS24-W2-000890 - An Apache web server must maintain the confidentiality of controlled information during transmission through the use of an approved TLS version - SSLProtocolWindowsDISA STIG Apache Server 2.4 Windows Site v2r1
Big Sur - Enforce FileVaultUnixNIST macOS Big Sur v1.4.0 - 800-171
Big Sur - Enforce FileVaultUnixNIST macOS Big Sur v1.4.0 - CNSSI 1253
Big Sur - Enforce FileVaultUnixNIST macOS Big Sur v1.4.0 - 800-53r4 Moderate
Big Sur - Enforce FileVaultUnixNIST macOS Big Sur v1.4.0 - 800-53r4 High
Big Sur - Enforce FileVaultUnixNIST macOS Big Sur v1.4.0 - 800-53r5 High
Big Sur - Enforce FileVaultUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Big Sur - Enforce FileVaultUnixNIST macOS Big Sur v1.4.0 - All Profiles
Catalina - Enforce FileVaultUnixNIST macOS Catalina v1.5.0 - All Profiles
Catalina - Enforce FileVaultUnixNIST macOS Catalina v1.5.0 - 800-53r4 High
Catalina - Enforce FileVaultUnixNIST macOS Catalina v1.5.0 - 800-53r4 Moderate
Catalina - Enforce FileVaultUnixNIST macOS Catalina v1.5.0 - CNSSI 1253
Catalina - Enforce FileVaultUnixNIST macOS Catalina v1.5.0 - 800-53r5 High
Catalina - Enforce FileVaultUnixNIST macOS Catalina v1.5.0 - 800-171
Catalina - Enforce FileVaultUnixNIST macOS Catalina v1.5.0 - 800-53r5 Moderate
CNTR-R2-001500 Rancher RKE2 keystore must implement encryption to prevent unauthorized disclosure of information at rest within Rancher RKE2.UnixDISA Rancher Government Solutions RKE2 STIG v2r2
DTOO187 - Office System - Rights managed Office Open XML files must be protected.WindowsDISA STIG Office System 2010 v1r13
DTOO187 - Rights managed Office Open XML files must be protected.WindowsDISA STIG Microsoft Office System 2016 v2r3
DTOO187 - Rights managed Office Open XML files must be protected.WindowsDISA STIG Microsoft Office System 2013 v2r2
DTOO321 - Encrypt document properties must be configured for OLE documents.WindowsDISA STIG Microsoft Office System 2013 v2r2
DTOO321 - Encrypt document properties must be configured for OLE documents.WindowsDISA STIG Microsoft Office System 2016 v2r3
DTOO321 - Office System - Encrypt document properties must be configured for OLE documents.WindowsDISA STIG Office System 2010 v1r13
MD4X-00-001400 - MongoDB must implement cryptographic mechanisms to prevent unauthorized modification of organization-defined information at rest (to include, at a minimum, PII and classified information) on organization-defined information system components.UnixDISA STIG MongoDB Enterprise Advanced 4.x v1r4 OS
Monterey - Enforce FileVaultUnixNIST macOS Monterey v1.0.0 - 800-53r4 High
Monterey - Enforce FileVaultUnixNIST macOS Monterey v1.0.0 - CNSSI 1253
Monterey - Enforce FileVaultUnixNIST macOS Monterey v1.0.0 - 800-171
Monterey - Enforce FileVaultUnixNIST macOS Monterey v1.0.0 - All Profiles
Monterey - Enforce FileVaultUnixNIST macOS Monterey v1.0.0 - 800-53r4 Moderate
Monterey - Enforce FileVaultUnixNIST macOS Monterey v1.0.0 - 800-53r5 High
Monterey - Enforce FileVaultUnixNIST macOS Monterey v1.0.0 - 800-53r5 Moderate
O365-CO-000002 - Document metadata for rights managed Office Open XML files must be protected.WindowsDISA STIG Microsoft Office 365 ProPlus v3r1
SQL2-00-021400 - SQL Server must employ cryptographic mechanisms preventing the unauthorized disclosure of information at rest.MS_SQLDBDISA STIG SQL Server 2012 Database Audit v1r20
UBTU-18-010003 - Ubuntu operating systems handling data requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.UnixDISA STIG Ubuntu 18.04 LTS v2r15
UBTU-20-010414 - Ubuntu operating systems handling data requiring 'data at rest' protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.UnixDISA STIG Ubuntu 20.04 LTS v2r1
UBTU-22-231010 - Ubuntu 22.04 LTS must implement cryptographic mechanisms to prevent unauthorized disclosure and modification of all information that requires protection at rest.UnixDISA STIG Canonical Ubuntu 22.04 LTS v2r2
WN12-00-000020 - Systems requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.WindowsDISA Windows Server 2012 and 2012 R2 MS STIG v3r7
WN12-00-000020 - Systems requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.WindowsDISA Windows Server 2012 and 2012 R2 DC STIG v3r7
WN16-00-000280 - Systems requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.WindowsDISA Windows Server 2016 STIG v2r9
WN19-00-000250 - Windows Server 2019 systems requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.WindowsDISA Windows Server 2019 STIG v3r2
WN22-00-000250 - Windows Server 2022 systems requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.WindowsDISA Windows Server 2022 STIG v2r2