Prevent non-privileged users from executing privileged functions and capture the execution of such functions in audit logs.
Limit unsuccessful logon attempts.
Provide privacy and security notices consistent with applicable CUI rules.
Use session lock with pattern-hiding displays to prevent access and viewing of data after a period of inactivity.
Terminate (automatically) a user session after a defined condition.
Monitor and control remote access sessions.
Employ cryptographic mechanisms to protect the confidentiality of remote access sessions.
Route remote access via managed access control points.
Authorize remote execution of privileged commands and remote access to security-relevant information.
Authorize wireless access prior to allowing such connections.