Details

Use of weak or untested encryption algorithms undermines the purposes of using encryption to protect data. The application must implement cryptographic modules adhering to the higher standards approved by the federal government since this provides assurance they have been tested and validated.

Solution

Configure the following registry value:

Registry Hive:
HKEY_CURRENT_USER
Registry Path:
SoftwareAdobeAdobe AcrobatDCAVGeneral

Value Name: bFIPSMode
Type: REG_DWORD
Value: 1
Configure the policy value for User Configuration > Administrative Templates > Adobe Acrobat Pro DC Continuous > Preferences > ‘Enable FIPS’ to ‘Enabled’.

Supportive Information

The following resource is also helpful.

• https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Adobe_Acrobat_Pro_DC_Continuous_V2R1_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Windows.

References

• 800-53|SC-13
• CAT|II
• CCI|CCI-002450
• Rule-ID|SV-245874r766580_rule
• STIG-ID|AADC-CN-000955
• STIG-Legacy|SV-94081
• STIG-Legacy|V-79375
• Vuln-ID|V-245874

Source

• Tenable.com/audits