← Back to catalog
SC-23(5)
Allowed Certificate Authorities
System and Communications Protection (SC)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description
Only allow the use of [assignment] for verification of the establishment of protected sessions.
Discussion
Reliance on certificate authorities for the establishment of secure sessions includes the use of Transport Layer Security (TLS) certificates. These certificates, after verification by their respective certificate authorities, facilitate the establishment of protected sessions between web clients and web servers.
Implementation guidance
No content available.
CSF 2.0 crosswalk
No CSF mappings exist for this control.