NIST 800-53 Rev. 5

AC
AT
AU
CA
CM
CP
IA
IR
MA
MP
PE
PL
PM
PS
PT
RA
SA
SC
SI
SR
MA-1
MA-2
MA-2(1)
MA-2(2)
MA-3
MA-3(1)
MA-3(2)
MA-3(3)
MA-3(4)
MA-3(5)
MA-3(6)
MA-4
MA-4(1)
MA-4(2)
MA-4(3)
MA-4(4)
MA-4(5)
MA-4(6)
MA-4(7)
MA-5
MA-5(1)
MA-5(2)
MA-5(3)
MA-5(4)
MA-5(5)
MA-6
MA-6(1)
MA-6(2)
MA-6(3)
MA-7

MA-4(4): Nonlocal Maintenance | Authentication and Separation of Maintenance Sessions

Control Text:

Protect nonlocal maintenance sessions by: (a) Employing [Assignment: organization-defined authenticators that are replay resistant]; and (b) Separating the maintenance sessions from other network sessions with the system by either: (1) Physically separated communications paths; or (2) Logically separated communications paths.

Communications paths can be logically separated using encryption.

Related Controls

  • None