STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← All Controls

IA-2 (8)

Identification and AuthenticationRev 5system

Access to Accounts — Replay Resistant

Baselines:LowModerateHigh

Control Statement

Implement replay-resistant authentication mechanisms for access to [Selection: organization-defined value].

Supplemental Guidance

Authentication processes resist replay attacks if it is impractical to achieve successful authentications by replaying previous authentication messages. Replay-resistant techniques include protocols that use nonces or challenges such as time synchronous or cryptographic authenticators.

CCI Identifiers (3)

CCI-001941Implement replay-resistant authentication mechanisms for access to privileged accounts and/or non-privileged accounts.CCI-000773The organization defines replay-resistant authentication mechanisms to be used for network access to privileged accounts.CCI-000774The information system uses organization-defined replay-resistant authentication mechanisms for network access to privileged accounts.

Linked STIG Checks (152)

Across 103 STIGs. Click to expand.