STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to General Purpose Operating System Security Requirements Guide

V-203629

CAT I (High)

The operating system must store only encrypted representations of passwords.

Rule ID

SV-203629r982199_rule

STIG

General Purpose Operating System Security Requirements Guide

Version

V3R3

CCIs

CCI-004062

Discussion

Passwords need to be protected at all times, and encryption is the standard method for protecting passwords. If passwords are not encrypted, they can be plainly read (i.e., clear text) and easily compromised.

Check Content

Verify the operating system stores only encrypted representations of passwords. If it does not, this is a finding.

Fix Text

Configure the operating system to store only encrypted representations of passwords.