System and Communications Protection (SC)

a. Provide additional data origin authentication and integrity verification artifacts along with the authoritative name resolution data the system returns in response to external name/address resolution queries; and b. Provide the means to indicate the security status of child zones and (if the child supports secure resolution services) to enable verification of a chain of trust among parent and child domains, when operating as part of a distributed, hierarchical namespace.

Login

System and Communications Protection (SC)

[Withdrawn: Incorporated into SC-29(1).]

Login

System and Communications Protection (SC)

Provide data origin and integrity protection artifacts for internal name/address resolution queries.

Login

System and Communications Protection (SC)

Request and perform data origin authentication and data integrity verification on the name/address resolution responses the system receives from authoritative sources.

Login

System and Communications Protection (SC)

[Withdrawn: Incorporated into SC-8.]

Login

System and Communications Protection (SC)

Ensure the systems that collectively provide name/address resolution service for an organization are fault-tolerant and implement internal and external role separation.

Login

System and Communications Protection (SC)

Protect the authenticity of communications sessions.

Login

System and Communications Protection (SC)

Invalidate session identifiers upon user logout or other session termination.

Login

System and Communications Protection (SC)

[Withdrawn: Moved to SC-51.]

Login

System and Communications Protection (SC)

Generate a unique session identifier for each session with [Assignment: organization-defined randomness requirements] and recognize only session identifiers that are system-generated.

Login