← Back to catalog
SC-23
Session Authenticity
System and Communications Protection (SC)
Baselines
Low · Not includedModerate · IncludedHigh · Included
Description
Protect the authenticity of communications sessions.
Discussion
Protecting session authenticity addresses communications protection at the session level, not at the packet level. Such protection establishes grounds for confidence at both ends of communications sessions in the ongoing identities of other parties and the validity of transmitted information. Authenticity protection includes protecting against "man-in-the-middle" attacks, session hijacking, and the insertion of false information into sessions.
Implementation guidance
No content available.
CSF 2.0 crosswalk
No CSF mappings exist for this control.