NIST 800-171 v2
110 security requirements available
3.13.9Derived Requirement
System and Communications Protection
Security Requirement
Terminate network connections associated with communications sessions at the end of the sessions or after a defined period of inactivity.
Discussion
This requirement applies to internal and external networks. Terminating network connections associated with communications sessions include de-allocating associated TCP/IP address or port pairs at the operating system level, or de-allocating networking assignments at the application level if multiple application sessions are using a single, operating system-level network connection. Time periods of user inactivity may be established by organizations and include time periods by type of network access or for specific network accesses
- Framework
- NIST SP 800-171 Rev 2
- Family
- System and Communications Protection
- Requirement Type
- derived
Related Frameworks
3 paths across 2 frameworks
Related Frameworks
NIST 800-531 mapping
SC-10
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI2 mappings
CCI-001133
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001134
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
Related STIGs
153 STIGs reach this control through 2 CCIs via 800-53 control SC-10. Expand a row to see the responsible NICE and O*NET roles.
Operating System — Desktop
6 STIGs
Operating System — Desktop
6 STIGsApple macOS 14 (Sonoma) Security Technical Implementation Guide
22024-12-047 of 155 findings match
M7
Apple macOS 15 (Sequoia) Security Technical Implementation Guide
V1R72026-02-067 of 160 findings match
M7
Apple macOS 15 (Sequoia) Security Technical Implementation Guide
12025-05-057 of 161 findings match
M7
Apple macOS 26 (Tahoe) Security Technical Implementation Guide
V1R22026-02-117 of 160 findings match
M7
Microsoft Windows 11 Security Technical Implementation Guide
V2R72026-02-121 of 262 findings match
M1
Microsoft Windows 11 Security Technical Implementation Guide
22025-05-151 of 258 findings match
M1
Operating System — Server
44 STIGs
Operating System — Server
44 STIGsOracle Linux 8 Security Technical Implementation Guide
V2R82026-02-134 of 375 findings match
M4
Oracle Linux 9 Security Technical Implementation Guide
V1R52026-02-174 of 448 findings match
M4
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
V2R72026-02-054 of 366 findings match
M4
Amazon Linux 2023 Security Technical Implementation Guide
V1R32026-02-273 of 187 findings match
M3
Oracle Linux 7 Security Technical Implementation Guide
32025-05-083 of 243 findings match
M3
Oracle Linux 8 Security Technical Implementation Guide
22025-05-133 of 374 findings match
M3
Oracle Linux 9 Security Technical Implementation Guide
12025-05-083 of 456 findings match
M3
Red Hat Enterprise Linux 10 Security Technical Implementation Guide
V1R12026-03-113 of 434 findings match
M3
Show 36 more STIGs in this category →Hide additional STIGs
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
22025-05-143 of 369 findings match
M3
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
22025-05-143 of 450 findings match
M3
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
V2R82026-02-053 of 446 findings match
M3
Anduril NixOS Security Technical Implementation Guide
V1R22025-08-192 of 103 findings match
M2
Anduril NixOS Security Technical Implementation Guide
12024-10-252 of 104 findings match
M2
Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide
22025-05-162 of 172 findings match
M2
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
V2R82026-02-062 of 188 findings match
M2
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
22025-05-162 of 187 findings match
M2
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
V1R52026-02-062 of 194 findings match
M2
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
12025-05-162 of 194 findings match
M2
IBM AIX 7.x Security Technical Implementation Guide
V3R22026-02-062 of 283 findings match
M2
IBM AIX 7.x Security Technical Implementation Guide
32024-08-162 of 283 findings match
M2
Solaris 11 SPARC Security Technical Implementation Guide
V3R52026-02-192 of 217 findings match
M1L1
Solaris 11 SPARC Security Technical Implementation Guide
32025-05-052 of 217 findings match
M1L1
Solaris 11 X86 Security Technical Implementation Guide
V3R52026-02-192 of 216 findings match
M1L1
Solaris 11 X86 Security Technical Implementation Guide
32025-05-052 of 216 findings match
M1L1
SUSE Linux Enterprise Server 12 Security Technical Implementation Guide
32025-05-142 of 211 findings match
M2
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
V2R72026-02-192 of 214 findings match
M2
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
22025-05-142 of 216 findings match
M2
Cloud Linux AlmaLinux OS 9 Security Technical Implementation Guide
V1R62026-02-271 of 439 findings match
M1
CloudLinux AlmaLinux OS 9 Security Technical Implementation Guide
12025-05-221 of 445 findings match
M1
General Purpose Operating System Security Requirements Guide
32024-12-041 of 198 findings match
M1
General Purpose Operating System Security Requirements Guide
V3R32025-09-221 of 203 findings match
M1
HPE 3PAR SSMC Operating System Security Technical Implementation Guide
V2R12024-08-271 of 14 findings match
M1
HPE 3PAR StoreServ 3.3.x Security Technical Implementation Guide
V2R12024-08-271 of 30 findings match
M1
Microsoft Windows Server 2019 Security Technical Implementation Guide
32025-05-231 of 275 findings match
L1
Microsoft Windows Server 2019 Security Technical Implementation Guide
V3R82026-02-121 of 282 findings match
L1
Microsoft Windows Server 2022 Security Technical Implementation Guide
22025-05-151 of 275 findings match
L1
Microsoft Windows Server 2022 Security Technical Implementation Guide
V2R82026-02-131 of 282 findings match
L1
Microsoft Windows Server 2025 Security Technical Implementation Guide
V1R12026-02-201 of 284 findings match
L1
NetApp ONTAP DSC 9.x Security Technical Implementation Guide
22024-08-221 of 29 findings match
H1
NetApp ONTAP DSC 9.x Security Technical Implementation Guide
V2R32025-12-081 of 29 findings match
H1
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
V1R42026-02-101 of 208 findings match
M1
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
12025-05-081 of 210 findings match
M1
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
V2R52026-02-191 of 226 findings match
M1
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
22025-05-081 of 226 findings match
M1
Operating System — Mainframe
11 STIGs
Operating System — Mainframe
11 STIGsIBM z/OS TSS Security Technical Implementation Guide
V9R82026-03-093 of 230 findings match
M3
IBM z/OS TSS Security Technical Implementation Guide
92025-06-243 of 231 findings match
M3
IBM z/OS ACF2 Security Technical Implementation Guide
92025-06-242 of 226 findings match
M2
IBM z/OS ACF2 Security Technical Implementation Guide
V9R82026-03-092 of 225 findings match
M2
IBM z/OS RACF Security Technical Implementation Guide
V9R82026-03-092 of 222 findings match
M2
IBM z/OS RACF Security Technical Implementation Guide
92025-06-242 of 224 findings match
M2
zOS WebSphere MQ for ACF2 Security Technical Implementation Guide
V7R22025-09-271 of 17 findings match
M1
zOS WebSphere MQ for RACF Security Technical Implementation Guide
V7R32025-09-271 of 17 findings match
M1
Show 3 more STIGs in this category →Hide additional STIGs
zOS WebSphere MQ for TSS Security Technical Implementation Guide
V7R22025-09-281 of 17 findings match
M1
zOS WebsphereMQ for ACF2 Security Technical Implementation Guide
72025-02-241 of 17 findings match
M1
zOS WebsphereMQ for RACF Security Technical Implementation Guide
72025-06-241 of 17 findings match
M1
Network Device
62 STIGs
Network Device
62 STIGsJuniper SRX Services Gateway NDM Security Technical Implementation Guide
V3R32024-12-202 of 68 findings match
M2
Virtual Private Network (VPN) Security Requirements Guide
V3R42025-09-102 of 92 findings match
M1L1
Virtual Private Network (VPN) Security Requirements Guide
32024-12-192 of 82 findings match
M1L1
Akamai KSD Service Impact Level 2 NDM Security Technical Implementation Guide
V1R12017-09-151 of 24 findings match
M1
Application Layer Gateway Security Requirements Guide
22024-12-041 of 155 findings match
M1
Application Layer Gateway Security Requirements Guide
V2R32025-09-151 of 160 findings match
M1
Arista MLS EOS 4.X NDM Security Technical Implementation Guide
V2R22025-02-201 of 21 findings match
H1
Cisco ACI NDM Security Technical Implementation Guide
V1R22025-12-111 of 26 findings match
H1
Show 54 more STIGs in this category →Hide additional STIGs
Cisco ACI NDM Security Technical Implementation Guide
12025-06-131 of 26 findings match
H1
Cisco ASA NDM Security Technical Implementation Guide
V2R42025-12-081 of 47 findings match
H1
Cisco ASA NDM Security Technical Implementation Guide
22025-05-191 of 47 findings match
H1
Cisco IOS Router NDM Security Technical Implementation Guide
V3R72026-02-251 of 43 findings match
H1
Cisco IOS Router NDM Security Technical Implementation Guide
32025-05-191 of 43 findings match
H1
Cisco IOS Switch NDM Security Technical Implementation Guide
V3R72026-02-251 of 43 findings match
H1
Cisco IOS Switch NDM Security Technical Implementation Guide
32025-05-191 of 43 findings match
H1
Cisco IOS XE Router NDM Security Technical Implementation Guide
V3R72026-02-111 of 42 findings match
H1
Cisco IOS XE Router NDM Security Technical Implementation Guide
32025-05-161 of 42 findings match
H1
Cisco IOS XE Switch NDM Security Technical Implementation Guide
V3R62026-03-041 of 42 findings match
H1
Cisco IOS XE Switch NDM Security Technical Implementation Guide
32025-05-191 of 42 findings match
H1
Cisco IOS XR Router NDM Security Technical Implementation Guide
32025-05-191 of 27 findings match
H1
Cisco IOS XR Router NDM Security Technical Implementation Guide
V3R62026-02-261 of 27 findings match
H1
Cisco ISE NDM Security Technical Implementation Guide
V2R32025-12-111 of 53 findings match
H1
Cisco ISE NDM Security Technical Implementation Guide
22024-09-101 of 53 findings match
H1
Cisco NX OS Switch NDM Security Technical Implementation Guide
V3R22024-09-101 of 42 findings match
H1
Cisco NX OS Switch NDM Security Technical Implementation Guide
32025-05-191 of 42 findings match
H1
Dell OS10 Switch NDM Security Technical Implementation Guide
V1R12024-12-111 of 39 findings match
H1
Enterprise Voice, Video, and Messaging Endpoint Security Requirements Guide
V1R32025-10-011 of 47 findings match
H1
Enterprise Voice, Video, and Messaging Endpoint Security Requirements Guide
12024-08-021 of 47 findings match
H1
Enterprise Voice, Video, and Messaging Session Management Security Requirements Guide
V1R22025-12-301 of 60 findings match
M1
Enterprise Voice, Video, and Messaging Session Management Security Requirements Guide
12024-03-111 of 61 findings match
M1
F5 BIG-IP TMOS ALG Security Technical Implementation Guide
V1R22025-06-091 of 37 findings match
H1
F5 BIG-IP TMOS NDM Security Technical Implementation Guide
V1R22025-06-121 of 29 findings match
H1
Fortinet FortiGate Firewall NDM Security Technical Implementation Guide
V1R52025-11-191 of 60 findings match
H1
Fortinet FortiGate Firewall NDM Security Technical Implementation Guide
12023-06-011 of 60 findings match
H1
HP FlexFabric Switch NDM Security Technical Implementation Guide
V1R42025-06-121 of 79 findings match
M1
HPE Alletra Storage ArcusOS Network Device Management Security Technical Implementation Guide
V1R12026-03-031 of 19 findings match
H1
HPE Aruba Networking AOS NDM Security Technical Implementation Guide
V1R12024-10-291 of 37 findings match
H1
HPE Aruba Networking AOS VPN Security Technical Implementation Guide
V1R12024-10-291 of 21 findings match
L1
HPE Nimble Storage Array NDM Security Technical Implementation Guide
V2R12024-06-201 of 20 findings match
H1
IBM DataPower Network Device Management Security Technical Implementation Guide
V1R22017-10-051 of 64 findings match
H1
Ivanti Connect Secure NDM Security Technical Implementation Guide
V2R32025-09-091 of 29 findings match
H1
Ivanti Connect Secure NDM Security Technical Implementation Guide
22024-09-161 of 29 findings match
H1
Juniper EX Series Switches Network Device Management Security Technical Implementation Guide
V2R42025-12-101 of 56 findings match
H1
Juniper EX Series Switches Network Device Management Security Technical Implementation Guide
22025-03-071 of 56 findings match
H1
Juniper Router NDM Security Technical Implementation Guide
V3R22024-12-051 of 49 findings match
H1
Juniper SRX Services Gateway ALG Security Technical Implementation Guide
V3R32024-12-191 of 24 findings match
M1
Juniper SRX Services Gateway VPN Security Technical Implementation Guide
V3R22024-12-201 of 28 findings match
M1
Network Device Management Security Requirements Guide
V5R32025-02-111 of 104 findings match
H1
Network Device Management Security Requirements Guide
V5R42025-09-101 of 105 findings match
H1
Network WLAN AP-IG Management Security Technical Implementation Guide
V7R22023-09-131 of 19 findings match
H1
Network WLAN AP-NIPR Management Security Technical Implementation Guide
V7R22023-09-131 of 18 findings match
H1
Network WLAN Bridge Management Security Technical Implementation Guide
V7R22023-09-131 of 18 findings match
H1
Network WLAN Controller Management Security Technical Implementation Guide
V7R22023-09-181 of 18 findings match
H1
Palo Alto Networks ALG Security Technical Implementation Guide
V3R42025-03-121 of 50 findings match
M1
Palo Alto Networks NDM Security Technical Implementation Guide
V3R32025-03-121 of 34 findings match
H1
Riverbed NetIM OS Security Technical Implementation Guide
V1R12025-10-021 of 154 findings match
M1
Riverbed NetProfiler Security Technical Implementation Guide
V2R12024-08-271 of 25 findings match
H1
RUCKUS ICX NDM Security Technical Implementation Guide
V1R12025-05-281 of 25 findings match
H1
Symantec Edge SWG NDM Security Technical Implementation Guide
V1R22026-02-251 of 30 findings match
H1
Symantec ProxySG ALG Security Technical Implementation Guide
V1R32020-03-271 of 66 findings match
H1
Symantec ProxySG NDM Security Technical Implementation Guide
V1R22019-12-201 of 32 findings match
H1
Trend Micro TippingPoint NDM Security Technical Implementation Guide
V2R32025-03-101 of 30 findings match
H1
Web / Application Server
2 STIGs
Web / Application Server
2 STIGsApplication Security and Development Security Technical Implementation Guide
62025-02-121 of 286 findings match
M1
Application Security and Development Security Technical Implementation Guide
V6R42025-09-091 of 286 findings match
M1
Virtualization / Container
22 STIGs
Virtualization / Container
22 STIGsVMware vSphere 7.0 ESXi Security Technical Implementation Guide
V1R42025-02-113 of 75 findings match
M3
VMware vSphere 8.0 ESXi Security Technical Implementation Guide
V2R32025-02-113 of 76 findings match
M3
VMware vSphere 8.0 ESXi Security Technical Implementation Guide
V1R12023-10-113 of 73 findings match
M3
VMware vSphere 7.0 vCenter Appliance Photon OS Security Technical Implementation Guide
V1R42024-12-162 of 113 findings match
M2
VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 Security Technical Implementation Guide
V2R12024-07-112 of 106 findings match
M2
VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 Security Technical Implementation Guide
V1R12023-10-292 of 104 findings match
M2
Container Platform Security Requirements Guide
V2R42025-09-101 of 188 findings match
M1
Container Platform Security Requirements Guide
22025-05-151 of 187 findings match
M1
Show 14 more STIGs in this category →Hide additional STIGs
Kubernetes Security Technical Implementation Guide
V2R62026-02-121 of 92 findings match
M1
Kubernetes Security Technical Implementation Guide
22025-05-161 of 94 findings match
M1
Mirantis Kubernetes Engine Security Technical Implementation Guide
V2R12024-08-271 of 44 findings match
M1
Rancher Government Solutions RKE2 Security Technical Implementation Guide
V2R62026-02-131 of 21 findings match
M1
Rancher Government Solutions RKE2 Security Technical Implementation Guide
22024-12-201 of 24 findings match
M1
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
22025-05-151 of 83 findings match
M1
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
V2R52025-12-041 of 83 findings match
M1
Virtual Machine Manager Security Requirements Guide
22024-12-061 of 193 findings match
M1
Virtual Machine Manager Security Requirements Guide
V2R32025-09-101 of 198 findings match
M1
VMware NSX 4.x Manager NDM Security Technical Implementation Guide
V1R22024-12-131 of 28 findings match
H1
VMware NSX-T Manager NDM Security Technical Implementation Guide
V1R32023-06-221 of 23 findings match
H1
VMware vSphere 7.0 vCenter Security Technical Implementation Guide
V1R32023-12-211 of 57 findings match
M1
VMware vSphere 8.0 vCenter Security Technical Implementation Guide
V1R12023-10-111 of 65 findings match
M1
VMware vSphere 8.0 vCenter Security Technical Implementation Guide
V2R32025-06-091 of 67 findings match
M1
Endpoint Security Management
6 STIGs
Endpoint Security Management
6 STIGsForescout Network Device Management Security Technical Implementation Guide
V2R32025-06-121 of 42 findings match
H1
HYCU Protege Security Technical Implementation Guide
V1R22026-03-041 of 55 findings match
H1
HYCU Protege Security Technical Implementation Guide
12024-10-291 of 55 findings match
H1
Ivanti Sentry 9.x ALG Security Technical Implementation Guide
V3R12024-09-251 of 32 findings match
M1
Ivanti Sentry 9.x NDM Security Technical Implementation Guide
V3R12024-09-251 of 26 findings match
H1
Tanium 7.x Operating System on TanOS Security Technical Implementation Guide
V2R22025-02-111 of 31 findings match
M1