MA-4(4)

  • Requirement

    Protect nonlocal maintenance sessions by:

    1. Employing [Assignment: organization-defined authenticators that are replay resistant]; and
    2. Separating the maintenance sessions from other network sessions with the system by either:
      1. Physically separated communications paths; or
      2. Logically separated communications paths.
  • Discussion

    Communications paths can be logically separated using encryption.

More Info

  • Title

    Nonlocal Maintenance | Authentication and Separation of Maintenance Sessions
  • Family

    Maintenance
  • NIST 800-53B Baseline(s)

    • Related NIST 800-53 ID

    NIST 800-53A Assessment Guidance

    CMMC Training

    Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!