← Back to catalog
SC-23(5)

Allowed Certificate Authorities

System and Communications Protection (SC)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description

Only allow the use of [assignment] for verification of the establishment of protected sessions.

Discussion

Reliance on certificate authorities for the establishment of secure sessions includes the use of Transport Layer Security (TLS) certificates. These certificates, after verification by their respective certificate authorities, facilitate the establishment of protected sessions between web clients and web servers.

Implementation guidance

No content available.

CSF 2.0 crosswalk

No CSF mappings exist for this control.