NIST SP 800-53: SC-23 Session Authenticity 3.13 3.13.15 System and Communications Protection
This special publication from NIST provides an overview of session authenticity.
SEARCH RESULTS
NIST SP 800-53: SC-28 Protection of Information at Rest 3.13 3.13.6 System and Communications Protection
NIST resource that define requirements for proper protection of information at rest (e.g, encryption, off-line storage, physical protection)
NIST SP 800-77 Rev 1: Guide to IPSec VPNs 3.1 3.1.13 3.1.20 3.13 3.13.7 csc12 csc7 csc9 System and Communications Protection
This NIST Special Publication offers recommendations for designing, configuring, and managing IPSec VPN solutions.
North Carolina – System and Communications Protection Policy 3.13 3.13.4 3.13.9 System and Communications Protection
This policy describes the need to prevent unauthorized and unintended information transfer via shared system resource on NC information systems. See section SC-4 - Information in Shared Resources.
Open Web Application Security Project (OWASP) – Unsafe Mobile Code 3.13 3.13.13 System and Communications Protection
This article describes the security guidelines for mobile code.
OWASP – Network segmentation Cheat Sheet 3.13 3.13.5 System and Communications Protection
The main goal of this cheat sheet is to show the basics of network segmentation to effectively counter attacks by building a secure and maximally isolated service network architecture.
Palo Alto Networks – What is Network Segmentation? 3.13 3.13.5 System and Communications Protection
Defines network segmentation and the difference between logical and physical network segmentation and the use cases for it.
Peak InfoSec – 3.13.7 and Split Tunneling 3.13 3.13.7 System and Communications Protection
In this “As the CMMC Churns” they take a look at the keywords (e.g., remote devices, simultaneous, non-remote connections, et al) and describe how the requirement, when implemented operates as intended.
Pure Storage – What Does It Take to Be FIPS Compliant? 3.13 3.13.11 3.13.16 System and Communications Protection
In this article, Pure Storage looks at what the Federal Information Processing Standard (FIPS) is, how to become FIPS compliant, and what it means for your organization.
Reach – Security-Focused Configuration Management: Getting Beyond the Checkbox 3.13 3.13.5 3.4 3.4.2 Configuration Management csc11 csc12 csc9 System and Communications Protection
This blog post details how security focused configuration management is an active component of security.