NIST SP 800-171 & CMMC 2.0 3.5.11 Requirement:
Obscure feedback of authentication information.
NIST SP 800-171 & CMMC 2.0 3.5.11 Requirement Explanation:
If you do not obscure passwords when they are entered into your systems they can be observed by an attacker.
Example NIST SP 800-171 & CMMC 2.0 3.5.11 Implementation:
Ensure that your systems are configured to obscure passwords when they are entered into password fields. An example is when you enter your password into your laptop and it displays dots instead of the password. This condition also applies to smart phones and tablets managed by your company. In general this is performed by default by most systems.
NIST SP 800-171 & CMMC 2.0 3.5.11 Scenario(s):
- Scenario 1:
John types his password into his workstation. As he types it the password is obscured by dots.
Quick & Simple
Discover Our Cybersecurity Compliance Solutions:
Whether you need to meet and maintain your compliance requirements, help your clients meet them, or verify supplier compliance we have the expertise and solution for you
NIST SP 800-171 & CMMC Compliance
Become compliant, provide compliance services, or verify partner compliance with NIST SP 800-171 and CMMC requirements.
HIPAA Compliance
Become compliant, provide compliance services, or verify partner compliance with HIPAA security rule requirements.
FAR 52.204-21 Compliance
Become compliant, provide compliance services, or verify partner compliance with FAR 52.204-21 Basic Safeguarding of Covered Contractor Information Systems requirements.
ISO 27001 Compliance
Become compliant, provide compliance services, or verify partner compliance with ISO 27001 requirements.