IA-7: Cryptographic Module Authentication

Generated

2019-05-20 15:48:11.984914

Status

Failed

Statements

The information system implements mechanisms for authentication to a cryptographic module that meet the requirements of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance for such authentication.

STIG

STIG # Description Result
V-73063 PostgreSQL must use NIST FIPS 140-2 validated cryptographic modules for cryptographic operations. failed
V-73071 The DBMS must be configured on a platform that has a NIST certified FIPS 140-2 installation of OpenSSL. skipped

Additional Guidance

Authentication mechanisms may be required within a cryptographic module to authenticate an operator accessing the module and to verify that the operator is authorized to assume the requested role and perform services within that role.