ARDC-CL-000345 – Adobe Reader DC must enable FIPS mode.

Details

Use of weak or untested encryption algorithms undermines the purposes of utilizing encryption to protect data. The application must implement cryptographic modules adhering to the higher standards approved by the federal government since this provides assurance they have been tested and validated.

Solution

Configure the following registry value:

Note: The Key Names ‘bFIPSMode’ is not created by default in the Adobe Reader DC install and must be created.

Registry Hive: HKEY_CURRENT_USER
Registry Path: SoftwareAdobeAcrobat Reader2015AVGeneral

Value Name: bFIPSMode
Type: REG_DWORD
Value: 1

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Adobe_Acrobat_Reader_DC_Classic_V2R1_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Windows.

References

800-53|SC-13
CAT|II
CCI|CCI-002450
Rule-ID|SV-213166r557349_rule
STIG-ID|ARDC-CL-000345
STIG-Legacy|SV-80303
STIG-Legacy|V-65813
Vuln-ID|V-213166

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles