NIST 800-53 Rev 5
424 controls available
SC-8(1)moderatehigh
Cryptographic Protection
System and Communications Protection
Control Statement
Implement cryptographic mechanisms to {{ insert: param, sc-08.01_odp }} during transmission.
Discussion
Encryption protects information from unauthorized disclosure and modification during transmission. Cryptographic mechanisms that protect the confidentiality and integrity of information during transmission include TLS and IPSec. Cryptographic mechanisms used to protect information integrity include cryptographic hash functions that have applications in digital signatures, checksums, and message authentication codes.
- Framework
- NIST SP 800-53 Rev 5
- Family
- System and Communications Protection
- Baselines
- moderate, high
Related Frameworks
4 paths across 2 frameworks
Related Frameworks
NIST 800-1711 mapping
3.13.8
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI3 mappings
CCI-002418
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002419
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002421
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
Related STIGs
144 STIGs reach this control through 11 CCIs. Expand a row to see the responsible NICE and O*NET roles.
Operating System — Desktop
7 STIGs
Operating System — Desktop
7 STIGsMicrosoft Windows 11 Security Technical Implementation Guide
V2R72026-02-1210 of 262 findings match
M10
Microsoft Windows 11 Security Technical Implementation Guide
22025-05-1510 of 258 findings match
M10
Microsoft Windows 10 Security Technical Implementation Guide
32025-02-256 of 261 findings match
M6
Apple macOS 14 (Sonoma) Security Technical Implementation Guide
22024-12-041 of 155 findings match
H1
Apple macOS 15 (Sequoia) Security Technical Implementation Guide
V1R72026-02-061 of 160 findings match
H1
Apple macOS 15 (Sequoia) Security Technical Implementation Guide
12025-05-051 of 161 findings match
H1
Apple macOS 26 (Tahoe) Security Technical Implementation Guide
V1R22026-02-111 of 160 findings match
H1
Operating System — Server
43 STIGs
Operating System — Server
43 STIGsMicrosoft Windows Server 2019 Security Technical Implementation Guide
32025-05-2310 of 275 findings match
M10
Microsoft Windows Server 2019 Security Technical Implementation Guide
V3R82026-02-1210 of 282 findings match
M10
Microsoft Windows Server 2022 Security Technical Implementation Guide
22025-05-1510 of 275 findings match
M10
Microsoft Windows Server 2022 Security Technical Implementation Guide
V2R82026-02-1310 of 282 findings match
M10
Microsoft Windows Server 2025 Security Technical Implementation Guide
V1R12026-02-2010 of 284 findings match
M10
Solaris 11 SPARC Security Technical Implementation Guide
V3R52026-02-197 of 217 findings match
M7
Solaris 11 SPARC Security Technical Implementation Guide
32025-05-057 of 217 findings match
M7
Solaris 11 X86 Security Technical Implementation Guide
V3R52026-02-197 of 216 findings match
M7
Show 35 more STIGs in this category →Hide additional STIGs
Solaris 11 X86 Security Technical Implementation Guide
32025-05-057 of 216 findings match
M7
Cloud Linux AlmaLinux OS 9 Security Technical Implementation Guide
V1R62026-02-276 of 439 findings match
H2M4
CloudLinux AlmaLinux OS 9 Security Technical Implementation Guide
12025-05-226 of 445 findings match
H1M5
General Purpose Operating System Security Requirements Guide
32024-12-045 of 198 findings match
H3M2
General Purpose Operating System Security Requirements Guide
V3R32025-09-225 of 203 findings match
H3M2
Red Hat Enterprise Linux 10 Security Technical Implementation Guide
V1R12026-03-115 of 434 findings match
H2M3
Microsoft Windows Server Domain Name System (DNS) Security Technical Implementation Guide
22025-02-254 of 83 findings match
H1M3
Microsoft Windows Server Domain Name System (DNS) Security Technical Implementation Guide
V2R42026-02-234 of 81 findings match
H1M3
Oracle Linux 9 Security Technical Implementation Guide
12025-05-084 of 456 findings match
M4
Oracle Linux 9 Security Technical Implementation Guide
V1R52026-02-174 of 448 findings match
H1M3
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
V2R82026-02-063 of 188 findings match
H2M1
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
22025-05-163 of 187 findings match
H2M1
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
V1R52026-02-063 of 194 findings match
H2M1
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
12025-05-163 of 194 findings match
H2M1
Oracle Linux 7 Security Technical Implementation Guide
32025-05-083 of 243 findings match
M3
Oracle Linux 8 Security Technical Implementation Guide
V2R82026-02-133 of 375 findings match
H1M2
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
V2R72026-02-053 of 366 findings match
H1M2
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
22025-05-143 of 450 findings match
M3
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
V2R82026-02-053 of 446 findings match
H1M2
Amazon Linux 2023 Security Technical Implementation Guide
V1R32026-02-272 of 187 findings match
H2
Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide
22025-05-162 of 172 findings match
H1M1
Oracle Linux 8 Security Technical Implementation Guide
22025-05-132 of 374 findings match
M2
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
22025-05-142 of 369 findings match
M2
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
V1R42026-02-102 of 208 findings match
H2
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
12025-05-082 of 210 findings match
H2
Anduril NixOS Security Technical Implementation Guide
V1R22025-08-191 of 103 findings match
H1
Anduril NixOS Security Technical Implementation Guide
12024-10-251 of 104 findings match
H1
HPE 3PAR StoreServ 3.2.x Security Technical Implementation Guide
V2R12021-11-231 of 19 findings match
H1
IBM AIX 7.x Security Technical Implementation Guide
V3R22026-02-061 of 283 findings match
M1
IBM AIX 7.x Security Technical Implementation Guide
32024-08-161 of 283 findings match
M1
SUSE Linux Enterprise Server 12 Security Technical Implementation Guide
32025-05-141 of 211 findings match
H1
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
V2R72026-02-191 of 214 findings match
H1
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
22025-05-141 of 216 findings match
H1
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
V2R52026-02-191 of 226 findings match
M1
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
22025-05-081 of 226 findings match
M1
Operating System — Mainframe
1 STIG
Operating System — Mainframe
1 STIGCA IDMS Security Technical Implementation Guide
V2R12024-09-134 of 74 findings match
M4
Network Device
19 STIGs
Network Device
19 STIGsDomain Name System (DNS) Security Requirements Guide
V4R22025-12-194 of 119 findings match
H1M3
Domain Name System (DNS) Security Requirements Guide
42024-07-024 of 118 findings match
H1M3
Infoblox 7.x DNS Security Technical Implementation Guide
22020-12-104 of 67 findings match
M4
Infoblox 8.x DNS Security Technical Implementation Guide
V1R22025-03-114 of 71 findings match
M4
Virtual Private Network (VPN) Security Requirements Guide
V3R42025-09-103 of 92 findings match
H2M1
Virtual Private Network (VPN) Security Requirements Guide
32024-12-192 of 82 findings match
H2
BIND 9.x Security Technical Implementation Guide
V3R22026-02-251 of 73 findings match
H1
Cisco ASA VPN Security Technical Implementation Guide
V2R22024-08-221 of 41 findings match
M1
Show 11 more STIGs in this category →Hide additional STIGs
Enterprise Voice, Video, and Messaging Endpoint Security Requirements Guide
V1R32025-10-011 of 47 findings match
H1
Enterprise Voice, Video, and Messaging Endpoint Security Requirements Guide
12024-08-021 of 47 findings match
H1
Enterprise Voice, Video, and Messaging Session Management Security Requirements Guide
V1R22025-12-301 of 60 findings match
H1
Enterprise Voice, Video, and Messaging Session Management Security Requirements Guide
12024-03-111 of 61 findings match
H1
F5 BIG-IP TMOS VPN Security Technical Implementation Guide
V1R12024-09-091 of 12 findings match
M1
F5 NGINX Security Technical Implementation Guide
V1R12026-01-071 of 32 findings match
M1
HPE Aruba Networking AOS VPN Security Technical Implementation Guide
V1R12024-10-291 of 21 findings match
H1
Palo Alto Networks Prisma Cloud Compute Security Technical Implementation Guide
V2R32026-02-131 of 31 findings match
H1
Palo Alto Networks Prisma Cloud Compute Security Technical Implementation Guide
22024-12-061 of 31 findings match
H1
Riverbed NetIM OS Security Technical Implementation Guide
V1R12025-10-021 of 154 findings match
M1
Router Security Requirements Guide
V5R22025-09-101 of 123 findings match
M1
Database
16 STIGs
Database
16 STIGsCrunchy Data Postgres 16 Security Technical Implementation Guide
V1R22026-02-272 of 111 findings match
M2
Crunchy Data Postgres 16 Security Technical Implementation Guide
12024-06-172 of 111 findings match
M2
Crunchy Data PostgreSQL Security Technical Implementation Guide
V3R12024-08-272 of 113 findings match
M2
Database Security Requirements Guide
V4R52026-02-262 of 142 findings match
M2
Database Security Requirements Guide
42024-12-042 of 142 findings match
M2
EnterpriseDB Postgres Advanced Server (EPAS) Security Technical Implementation Guide
V2R12024-08-272 of 118 findings match
M2
IBM DB2 V10.5 LUW Security Technical Implementation Guide
V2R12023-06-112 of 93 findings match
M2
MariaDB Enterprise 10.x Security Technical Implementation Guide
V2R52026-03-022 of 107 findings match
M2
Show 8 more STIGs in this category →Hide additional STIGs
MariaDB Enterprise 10.x Security Technical Implementation Guide
22024-12-052 of 110 findings match
M2
Microsoft Azure SQL Database Security Technical Implementation Guide
V2R32025-06-112 of 76 findings match
M2
MongoDB Enterprise Advanced 7.x Security Technical Implementation Guide
V1R12024-09-272 of 50 findings match
M2
Redis Enterprise 6.x Security Technical Implementation Guide
V2R22024-09-042 of 71 findings match
M2
MongoDB Enterprise Advanced 8.x Security Technical Implementation Guide
V1R12026-02-201 of 55 findings match
M1
Oracle Database 19c Security Technical Implementation Guide
V1R52026-02-251 of 96 findings match
H1
Oracle Database 19c Security Technical Implementation Guide
12025-06-241 of 96 findings match
H1
Oracle MySQL 8.0 Security Technical Implementation Guide
V2R22024-09-041 of 100 findings match
M1
Web / Application Server
27 STIGs
Web / Application Server
27 STIGsWeb Server Security Requirements Guide
V4R42025-09-1012 of 126 findings match
H1M11
Web Server Security Requirements Guide
42025-02-1212 of 124 findings match
H1M11
Adobe ColdFusion Security Technical Implementation Guide
V1R12025-12-197 of 84 findings match
H4M3
Application Security and Development Security Technical Implementation Guide
62025-02-126 of 286 findings match
H2M4
Application Security and Development Security Technical Implementation Guide
V6R42025-09-096 of 286 findings match
H2M4
Application Server Security Requirements Guide
V4R42025-09-105 of 137 findings match
H2M3
Application Server Security Requirements Guide
42025-02-115 of 128 findings match
H2M3
Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide
V2R22024-12-064 of 68 findings match
H3M1
Show 19 more STIGs in this category →Hide additional STIGs
Apache Server 2.4 Windows Site Security Technical Implementation Guide
22025-02-123 of 36 findings match
M3
Application Programming Interface (API) Security Requirements Guide
V1R12025-09-243 of 65 findings match
H2M1
IBM WebSphere Traditional V9.x Security Technical Implementation Guide
V2R12026-02-263 of 77 findings match
M3
IBM WebSphere Traditional V9.x Security Technical Implementation Guide
12018-08-243 of 76 findings match
M3
Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide
V2R62024-12-063 of 68 findings match
H3
Microsoft IIS 10.0 Server Security Technical Implementation Guide
V3R72026-02-263 of 40 findings match
H1M2
Microsoft IIS 10.0 Server Security Technical Implementation Guide
32025-06-113 of 43 findings match
H1M2
Red Hat Ansible Automation Controller Web Server Security Technical Implementation Guide
V2R32025-11-203 of 28 findings match
H1M2
Red Hat Ansible Automation Controller Web Server Security Technical Implementation Guide
22024-08-273 of 28 findings match
H1M2
Apache Server 2.4 UNIX Server Security Technical Implementation Guide
V3R22024-12-042 of 47 findings match
M2
Apache Server 2.4 UNIX Server Security Technical Implementation Guide
32024-12-042 of 47 findings match
M2
Apache Server 2.4 Windows Site Security Technical Implementation Guide
V2R32026-02-252 of 16 findings match
M2
IBM WebSphere Liberty Server Security Technical Implementation Guide
22025-02-112 of 29 findings match
M2
IBM WebSphere Liberty Server Security Technical Implementation Guide
V2R42026-02-262 of 30 findings match
M2
JBoss Enterprise Application Platform 6.3 Security Technical Implementation Guide
V2R62025-02-202 of 67 findings match
M2
Microsoft IIS 10.0 Site Security Technical Implementation Guide
V2R152026-02-262 of 44 findings match
M2
Microsoft IIS 10.0 Site Security Technical Implementation Guide
22025-06-092 of 43 findings match
M2
Apache Server 2.4 Windows Server Security Technical Implementation Guide
V3R42026-02-251 of 49 findings match
M1
Apache Server 2.4 Windows Server Security Technical Implementation Guide
32025-02-121 of 54 findings match
M1
Virtualization / Container
16 STIGs
Virtualization / Container
16 STIGsVirtual Machine Manager Security Requirements Guide
22024-12-064 of 193 findings match
M4
Virtual Machine Manager Security Requirements Guide
V2R32025-09-104 of 198 findings match
M4
VMware vSphere 7.0 ESXi Security Technical Implementation Guide
V1R42025-02-114 of 75 findings match
H1M3
VMware vSphere 8.0 ESXi Security Technical Implementation Guide
V1R12023-10-114 of 73 findings match
H1M3
Container Platform Security Requirements Guide
V2R42025-09-103 of 188 findings match
H1M2
Container Platform Security Requirements Guide
22025-05-153 of 187 findings match
H1M2
VMware vSphere 8.0 ESXi Security Technical Implementation Guide
V2R32025-02-113 of 76 findings match
M3
Nutanix Acropolis GPOS Security Technical Implementation Guide
V1R12026-02-242 of 106 findings match
H1M1
Show 8 more STIGs in this category →Hide additional STIGs
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
22025-05-151 of 83 findings match
M1
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
V2R52025-12-041 of 83 findings match
M1
VMware vSphere 7.0 VAMI Security Technical Implementation Guide
V1R22023-06-151 of 28 findings match
M1
VMware vSphere 7.0 vCenter Appliance Lookup Service Security Technical Implementation Guide
V1R22023-06-151 of 31 findings match
M1
VMware vSphere 7.0 vCenter Appliance Perfcharts Security Technical Implementation Guide
V1R12023-02-211 of 34 findings match
M1
VMware vSphere 7.0 vCenter Appliance Photon OS Security Technical Implementation Guide
V1R42024-12-161 of 113 findings match
L1
VMware vSphere 7.0 vCenter Appliance STS Security Technical Implementation Guide
V1R22023-06-151 of 31 findings match
M1
VMware vSphere 7.0 vCenter Appliance UI Security Technical Implementation Guide
V1R22023-06-151 of 33 findings match
M1
Cloud / Identity Service
2 STIGs
Cloud / Identity Service
2 STIGsActive Directory Domain Security Technical Implementation Guide
V3R72026-02-111 of 36 findings match
M1
Active Directory Domain Security Technical Implementation Guide
32024-09-131 of 36 findings match
M1
Endpoint Security Management
12 STIGs
Endpoint Security Management
12 STIGsISEC7 Sphere Security Technical Implementation Guide
V3R12024-08-204 of 34 findings match
M4
Tanium 7.x Security Technical Implementation Guide
V2R32025-05-143 of 98 findings match
H3
BlackBerry Enterprise Mobility Server 2.x Security Technical Implementation Guide
V1R32020-05-152 of 23 findings match
M2
BlackBerry Enterprise Mobility Server 3.x Security Technical Implementation Guide
V1R22023-05-172 of 27 findings match
M2
BlackBerry UEM Security Technical Implementation Guide
V2R12020-12-041 of 16 findings match
M1
Central Log Server Security Requirements Guide
V3R42026-02-121 of 127 findings match
H1
Central Log Server Security Requirements Guide
32024-12-041 of 125 findings match
H1
Jamf Pro v10.x EMM Security Technical Implementation Guide
V3R12024-08-271 of 29 findings match
H1
Show 4 more STIGs in this category →Hide additional STIGs
Unified Endpoint Management Server Security Requirements Guide
22024-12-091 of 137 findings match
H1
Unified Endpoint Management Server Security Requirements Guide
V2R42025-09-101 of 138 findings match
H1
Xylok Security Suite 20.x Security Technical Implementation Guide
V1R22025-12-041 of 19 findings match
H1
Xylok Security Suite 20.x Security Technical Implementation Guide
12024-12-131 of 19 findings match
H1
Uncategorized
1 STIG
Uncategorized
1 STIGMicrosoft SharePoint 2013 Security Technical Implementation Guide
22024-12-102 of 37 findings match
H2