DISA Control Correlation Identifier (CCI)

CCI-000196 requires that “The information system, for password-based authentication, stores only cryptographically-protected passwords.” This Control Correlation Identifier (CCI) was published...

CCI-000181 requires that “The organization manages information system authenticators by establishing reuse conditions for authenticators.” This Control Correlation Identifier (CCI)...

CCI-000197 requires that “The information system, for password-based authentication, transmits only cryptographically-protected passwords.” This Control Correlation Identifier (CCI) was published...

CCI-000182 requires that “The organization manages information system authenticators by changing/refreshing authenticators in accordance with the organization-defined time period by...

CCI-000183 requires that “The organization manages information system authenticators by protecting authenticator content from unauthorized disclosure.” This Control Correlation Identifier...

CCI-000184 requires that “The organization manages information system authenticators by requiring individuals to take, and having devices implement, specific security...

CCI-000185 requires that “The information system, for PKI-based authentication, validates certifications by constructing and verifying a certification path to an...

CCI-000186 requires that “The information system, for PKI-based authentication, enforces authorized access to the corresponding private key.” This Control Correlation...

CCI-000187 requires that “The information system, for PKI-based authentication, maps the authenticated identity to the account of the individual or...

CCI-000188 requires that “The organization requires that the registration process to receive an organizational-defined type of authenticator be carried out...