OpenControls Logo

STIG Viewer

NIST 800-171 v2

110 security requirements available

My Controls0800-171 Catalog110Collections0
3.13.16Derived Requirement

System and Communications Protection

Security Requirement

Protect the confidentiality of CUI at rest.

Discussion

Information at rest refers to the state of information when it is not in process or in transit and is located on storage devices as specific components of systems. The focus of protection at rest is not on the type of storage device or the frequency of access but rather the state of the information. Organizations can use different mechanisms to achieve confidentiality protections, including the use of cryptographic mechanisms and file share scanning. Organizations may also use other controls including secure off-line storage in lieu of online storage when adequate protection of information at rest cannot otherwise be achieved or continuous monitoring to identify malicious code at rest. See [NIST CRYPTO].

Framework
NIST SP 800-171 Rev 2
Family
System and Communications Protection
Requirement Type
derived

Related Frameworks

3 paths across 2 frameworks
NIST 800-531 mapping
SC-28
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI2 mappings
CCI-001199
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002472
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent

Related STIGs

160 STIGs reach this control through 11 CCIs via 800-53 control SC-28. Expand a row to see the responsible NICE and O*NET roles.

Operating System — Desktop

7 STIGs
Microsoft Windows 10 Security Technical Implementation Guide
32025-02-254 of 261 findings match
Microsoft Windows 11 Security Technical Implementation Guide
V2R72026-02-123 of 262 findings match
Microsoft Windows 11 Security Technical Implementation Guide
22025-05-153 of 258 findings match
Apple macOS 14 (Sonoma) Security Technical Implementation Guide
22024-12-041 of 155 findings match
Apple macOS 15 (Sequoia) Security Technical Implementation Guide
V1R72026-02-061 of 160 findings match
Apple macOS 15 (Sequoia) Security Technical Implementation Guide
12025-05-051 of 161 findings match
Apple macOS 26 (Tahoe) Security Technical Implementation Guide
V1R22026-02-111 of 160 findings match

Operating System — Server

45 STIGs
General Purpose Operating System Security Requirements Guide
32024-12-044 of 198 findings match
General Purpose Operating System Security Requirements Guide
V3R32025-09-224 of 203 findings match
Red Hat Enterprise Linux 10 Security Technical Implementation Guide
V1R12026-03-114 of 434 findings match
Solaris 11 SPARC Security Technical Implementation Guide
V3R52026-02-193 of 217 findings match
Solaris 11 SPARC Security Technical Implementation Guide
32025-05-053 of 217 findings match
Solaris 11 X86 Security Technical Implementation Guide
V3R52026-02-193 of 216 findings match
Solaris 11 X86 Security Technical Implementation Guide
32025-05-053 of 216 findings match
Microsoft Windows Server 2025 Security Technical Implementation Guide
V1R12026-02-202 of 284 findings match
Show 37 more STIGs in this category →
Microsoft Windows Server Domain Name System (DNS) Security Technical Implementation Guide
22025-02-252 of 83 findings match
Microsoft Windows Server Domain Name System (DNS) Security Technical Implementation Guide
V2R42026-02-232 of 81 findings match
Oracle Linux 9 Security Technical Implementation Guide
12025-05-082 of 456 findings match
Oracle Linux 9 Security Technical Implementation Guide
V1R52026-02-172 of 448 findings match
Amazon Linux 2023 Security Technical Implementation Guide
V1R32026-02-271 of 187 findings match
Anduril NixOS Security Technical Implementation Guide
V1R22025-08-191 of 103 findings match
Anduril NixOS Security Technical Implementation Guide
12024-10-251 of 104 findings match
Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide
22025-05-161 of 172 findings match
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
V2R82026-02-061 of 188 findings match
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
22025-05-161 of 187 findings match
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
V1R52026-02-061 of 194 findings match
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
12025-05-161 of 194 findings match
Cloud Computing Mission Owner Operating System Security Requirements Guide
V1R32025-08-131 of 17 findings match
Cloud Computing Mission Owner Operating System Security Requirements Guide
12024-12-191 of 17 findings match
Cloud Linux AlmaLinux OS 9 Security Technical Implementation Guide
V1R62026-02-271 of 439 findings match
CloudLinux AlmaLinux OS 9 Security Technical Implementation Guide
12025-05-221 of 445 findings match
HPE 3PAR StoreServ 3.2.x Security Technical Implementation Guide
V2R12021-11-231 of 19 findings match
HPE 3PAR StoreServ 3.3.x Security Technical Implementation Guide
V2R12024-08-271 of 30 findings match
IBM AIX 7.x Security Technical Implementation Guide
V3R22026-02-061 of 283 findings match
IBM AIX 7.x Security Technical Implementation Guide
32024-08-161 of 283 findings match
Microsoft Windows Server 2019 Security Technical Implementation Guide
32025-05-231 of 275 findings match
Microsoft Windows Server 2019 Security Technical Implementation Guide
V3R82026-02-121 of 282 findings match
Microsoft Windows Server 2022 Security Technical Implementation Guide
22025-05-151 of 275 findings match
Microsoft Windows Server 2022 Security Technical Implementation Guide
V2R82026-02-131 of 282 findings match
Oracle Linux 8 Security Technical Implementation Guide
22025-05-131 of 374 findings match
Oracle Linux 8 Security Technical Implementation Guide
V2R82026-02-131 of 375 findings match
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
V2R72026-02-051 of 366 findings match
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
22025-05-141 of 369 findings match
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
22025-05-141 of 450 findings match
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
V2R82026-02-051 of 446 findings match
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
V1R42026-02-101 of 208 findings match
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
12025-05-081 of 210 findings match
SUSE Linux Enterprise Server 12 Security Technical Implementation Guide
32025-05-141 of 211 findings match
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
V2R72026-02-191 of 214 findings match
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
22025-05-141 of 216 findings match
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
V2R52026-02-191 of 226 findings match
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
22025-05-081 of 226 findings match

Operating System — Mainframe

9 STIGs
Mainframe Product Security Requirements Guide
V3R42025-09-104 of 194 findings match
Mainframe Product Security Requirements Guide
32024-12-054 of 193 findings match
IBM z/OS ACF2 Security Technical Implementation Guide
92025-06-241 of 226 findings match
IBM z/OS ACF2 Security Technical Implementation Guide
V9R82026-03-091 of 225 findings match
IBM z/OS RACF Security Technical Implementation Guide
V9R82026-03-091 of 222 findings match
IBM z/OS RACF Security Technical Implementation Guide
92025-06-241 of 224 findings match
IBM z/OS TSS Security Technical Implementation Guide
V9R82026-03-091 of 230 findings match
IBM z/OS TSS Security Technical Implementation Guide
92025-06-241 of 231 findings match
Show 1 more STIG in this category →
IBM zVM Using CA VM:Secure Security Technical Implementation Guide
V2R22022-08-311 of 77 findings match

Operating System — Mobile

13 STIGs
Apple iOS/iPadOS 18 Security Technical Implementation Guide
12025-06-303 of 92 findings match
Apple iOS/iPadOS 18 Security Technical Implementation Guide
V2R22025-12-013 of 92 findings match
Apple iOS/iPadOS 26 Security Technical Implementation Guide
V1R22025-12-013 of 92 findings match
Apple visionOS 2 Security Technical Implementation Guide
V1R12025-09-302 of 50 findings match
Apple visionOS 26 Security Technical Implementation Guide
V1R12026-03-102 of 51 findings match
Samsung Android 16 COBO Security Technical Implementation Guide
V1R32026-02-061 of 45 findings match
Samsung Android 16 COPE Security Technical Implementation Guide
V1R22026-02-111 of 48 findings match
Samsung Android OS 13 with Knox 3.x COBO Security Technical Implementation Guide
22024-12-061 of 30 findings match
Show 5 more STIGs in this category →
Samsung Android OS 13 with Knox 3.x COPE Security Technical Implementation Guide
22024-12-061 of 30 findings match
Samsung Android OS 14 with Knox 3.x COBO Security Technical Implementation Guide
22024-12-061 of 36 findings match
Samsung Android OS 14 with Knox 3.x COPE Security Technical Implementation Guide
22024-12-061 of 39 findings match
Samsung Android OS 15 with Knox 3.x COBO Security Technical Implementation Guide
12024-12-101 of 37 findings match
Samsung Android OS 15 with Knox 3.x COPE Security Technical Implementation Guide
12024-12-101 of 40 findings match

Network Device

17 STIGs
Domain Name System (DNS) Security Requirements Guide
V4R22025-12-195 of 119 findings match
Domain Name System (DNS) Security Requirements Guide
42024-07-024 of 118 findings match
BIND 9.x Security Technical Implementation Guide
V3R22026-02-253 of 73 findings match
BIND 9.x Security Technical Implementation Guide
22024-02-153 of 70 findings match
AAA Services Security Requirements Guide
V2R22024-12-041 of 77 findings match
Application Layer Gateway Security Requirements Guide
22024-12-041 of 155 findings match
Application Layer Gateway Security Requirements Guide
V2R32025-09-151 of 160 findings match
Cisco ISE NDM Security Technical Implementation Guide
V2R32025-12-111 of 53 findings match
Show 9 more STIGs in this category →
Cisco ISE NDM Security Technical Implementation Guide
22024-09-101 of 53 findings match
Fortinet FortiGate Firewall NDM Security Technical Implementation Guide
V1R52025-11-191 of 60 findings match
Fortinet FortiGate Firewall NDM Security Technical Implementation Guide
12023-06-011 of 60 findings match
HPE Alletra Storage ArcusOS Web Server Security Technical Implementation Guide
V1R12026-03-031 of 6 findings match
Juniper EX Series Switches Network Device Management Security Technical Implementation Guide
V2R42025-12-101 of 56 findings match
Juniper EX Series Switches Network Device Management Security Technical Implementation Guide
22025-03-071 of 56 findings match
Network Device Management Security Requirements Guide
V5R32025-02-111 of 104 findings match
Network Device Management Security Requirements Guide
V5R42025-09-101 of 105 findings match
Riverbed NetIM OS Security Technical Implementation Guide
V1R12025-10-021 of 154 findings match

Database

26 STIGs
Microsoft Azure SQL Managed Instance Security Technical Implementation Guide
V1R12025-10-076 of 84 findings match
MS SQL Server 2016 Database Security Technical Implementation Guide
32025-06-115 of 28 findings match
Database Security Requirements Guide
V4R52026-02-264 of 142 findings match
Database Security Requirements Guide
42024-12-044 of 142 findings match
Microsoft SQL Server 2022 Database Security Technical Implementation Guide
V1R32026-02-254 of 23 findings match
Microsoft SQL Server 2022 Database Security Technical Implementation Guide
12025-05-294 of 22 findings match
MS SQL Server 2016 Database Security Technical Implementation Guide
V3R52026-03-094 of 23 findings match
Crunchy Data Postgres 16 Security Technical Implementation Guide
V1R22026-02-273 of 111 findings match
Show 18 more STIGs in this category →
Crunchy Data Postgres 16 Security Technical Implementation Guide
12024-06-173 of 111 findings match
Crunchy Data PostgreSQL Security Technical Implementation Guide
V3R12024-08-273 of 113 findings match
EnterpriseDB Postgres Advanced Server (EPAS) Security Technical Implementation Guide
V2R12024-08-273 of 118 findings match
IBM DB2 V10.5 LUW Security Technical Implementation Guide
V2R12023-06-113 of 93 findings match
MariaDB Enterprise 10.x Security Technical Implementation Guide
V2R52026-03-023 of 107 findings match
MariaDB Enterprise 10.x Security Technical Implementation Guide
22024-12-053 of 110 findings match
MarkLogic Server v9 Security Technical Implementation Guide
V3R22024-09-043 of 80 findings match
Microsoft Azure SQL Database Security Technical Implementation Guide
V2R32025-06-113 of 76 findings match
Microsoft SQL Server 2022 Instance Security Technical Implementation Guide
V1R42026-02-253 of 79 findings match
Microsoft SQL Server 2022 Instance Security Technical Implementation Guide
12025-05-303 of 80 findings match
MongoDB Enterprise Advanced 8.x Security Technical Implementation Guide
V1R12026-02-203 of 55 findings match
MS SQL Server 2016 Instance Security Technical Implementation Guide
V3R62025-12-083 of 84 findings match
MS SQL Server 2016 Instance Security Technical Implementation Guide
32025-06-113 of 101 findings match
Oracle MySQL 8.0 Security Technical Implementation Guide
V2R22024-09-043 of 100 findings match
Redis Enterprise 6.x Security Technical Implementation Guide
V2R22024-09-043 of 71 findings match
MongoDB Enterprise Advanced 7.x Security Technical Implementation Guide
V1R12024-09-272 of 50 findings match
Oracle Database 19c Security Technical Implementation Guide
V1R52026-02-252 of 96 findings match
Oracle Database 19c Security Technical Implementation Guide
12025-06-242 of 96 findings match

Web / Application Server

19 STIGs
Application Server Security Requirements Guide
V4R42025-09-105 of 137 findings match
Application Server Security Requirements Guide
42025-02-115 of 128 findings match
Application Security and Development Security Technical Implementation Guide
62025-02-124 of 286 findings match
Application Security and Development Security Technical Implementation Guide
V6R42025-09-094 of 286 findings match
Application Programming Interface (API) Security Requirements Guide
V1R12025-09-243 of 65 findings match
Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide
V2R62023-12-183 of 64 findings match
Microsoft Exchange 2019 Mailbox Server Security Technical Implementation Guide
V2R32025-05-143 of 66 findings match
Web Server Security Requirements Guide
V4R42025-09-103 of 126 findings match
Show 11 more STIGs in this category →
Web Server Security Requirements Guide
42025-02-123 of 124 findings match
Adobe ColdFusion Security Technical Implementation Guide
V1R12025-12-192 of 84 findings match
IBM WebSphere Traditional V9.x Security Technical Implementation Guide
V2R12026-02-262 of 77 findings match
IBM WebSphere Traditional V9.x Security Technical Implementation Guide
12018-08-242 of 76 findings match
IBM WebSphere Liberty Server Security Technical Implementation Guide
22025-02-111 of 29 findings match
IBM WebSphere Liberty Server Security Technical Implementation Guide
V2R42026-02-261 of 30 findings match
JBoss Enterprise Application Platform 6.3 Security Technical Implementation Guide
V2R62025-02-201 of 67 findings match
Microsoft IIS 10.0 Server Security Technical Implementation Guide
V3R72026-02-261 of 40 findings match
Microsoft IIS 10.0 Server Security Technical Implementation Guide
32025-06-111 of 43 findings match
Microsoft IIS 10.0 Site Security Technical Implementation Guide
V2R152026-02-261 of 44 findings match
Microsoft IIS 10.0 Site Security Technical Implementation Guide
22025-06-091 of 43 findings match

Virtualization / Container

13 STIGs
Virtual Machine Manager Security Requirements Guide
22024-12-064 of 193 findings match
Virtual Machine Manager Security Requirements Guide
V2R32025-09-104 of 198 findings match
Nutanix Acropolis Application Server Security Technical Implementation Guide
V1R12026-02-243 of 31 findings match
Container Platform Security Requirements Guide
V2R42025-09-102 of 188 findings match
Container Platform Security Requirements Guide
22025-05-152 of 187 findings match
Nutanix Acropolis GPOS Security Technical Implementation Guide
V1R12026-02-242 of 106 findings match
Kubernetes Security Technical Implementation Guide
V2R62026-02-121 of 92 findings match
Kubernetes Security Technical Implementation Guide
22025-05-161 of 94 findings match
Show 5 more STIGs in this category →
Rancher Government Solutions RKE2 Security Technical Implementation Guide
22024-12-201 of 24 findings match
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
22025-05-151 of 83 findings match
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
V2R52025-12-041 of 83 findings match
VMware vSphere 8.0 vCenter Security Technical Implementation Guide
V1R12023-10-111 of 65 findings match
VMware vSphere 8.0 vCenter Security Technical Implementation Guide
V2R32025-06-091 of 67 findings match

Endpoint Security Management

6 STIGs
Central Log Server Security Requirements Guide
V3R42026-02-121 of 127 findings match
Central Log Server Security Requirements Guide
32024-12-041 of 125 findings match
Dragos Platform 2.x Security Technical Implementation Guide
V1R62026-02-181 of 19 findings match
Dragos Platform 2.x Security Technical Implementation Guide
12025-05-151 of 19 findings match
Forescout Network Device Management Security Technical Implementation Guide
V2R32025-06-121 of 42 findings match
Tanium 7.x Operating System on TanOS Security Technical Implementation Guide
V2R22025-02-111 of 31 findings match

Productivity Application

3 STIGs
Microsoft Office 365 ProPlus Security Technical Implementation Guide
V3R52026-02-123 of 139 findings match
Microsoft Office 365 ProPlus Security Technical Implementation Guide
32025-03-053 of 138 findings match
Google Chrome Current Windows Security Technical Implementation Guide
V2R112025-05-151 of 46 findings match

Uncategorized

2 STIGs
Microsoft Office System 2016 Security Technical Implementation Guide
22024-12-065 of 20 findings match
Microsoft Internet Explorer 11 Security Technical Implementation Guide
22023-12-012 of 137 findings match