IA-7: Cryptographic Module Authentication


2019-04-12 13:01:48.067729




The information system implements mechanisms for authentication to a cryptographic module that meet the requirements of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance for such authentication.


STIG # Description Result
V-73063 PostgreSQL must use NIST FIPS 140-2 validated cryptographic modules for cryptographic operations. failed
V-73071 The DBMS must be configured on a platform that has a NIST certified FIPS 140-2 installation of OpenSSL. skipped

Additional Guidance

Authentication mechanisms may be required within a cryptographic module to authenticate an operator accessing the module and to verify that the operator is authorized to assume the requested role and perform services within that role.