STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← All Controls

IA-3 (1)

Identification and AuthenticationRev 5system

Cryptographic Bidirectional Authentication

Control Statement

Authenticate [Assignment: devices and/or types of devices] before establishing [Selection: organization-defined value] connection using bidirectional authentication that is cryptographically based.

Supplemental Guidance

A local connection is a connection with a device that communicates without the use of a network. A network connection is a connection with a device that communicates through a network. A remote connection is a connection with a device that communicates through an external network. Bidirectional authentication provides stronger protection to validate the identity of other devices for connections that are of greater risk.

Related Controls (3)

SC-8SC-12SC-13

CCI Identifiers (4)

CCI-001959Defines the devices and/or types of devices the system is to authenticate before establishing a connection.CCI-000779The information system authenticates devices before establishing remote network connections using bidirectional authentication between devices that is cryptographically based.CCI-000780The information system authenticates devices before establishing wireless network connections using bidirectional authentication between devices that is cryptographically based.CCI-001967Authenticate organization-defined devices and/or types of devices before establishing a local, remote, and/or network connection using bidirectional authentication that is cryptographically based.

Linked STIG Checks (144)

Across 89 STIGs. Click to expand.