Edit this page

Data Protection and Remote Access

This section covers FISMA metrics around data protection and remote access (2.18)

Chart logo

Data Protection and Remote Access

2.18 Number of Systems from Metric 1.1 that require all users (100% privileged and 100% unprivileged) to authenticate using a two-factor PIV card or other NIST LOA 4 credential.

Why is Metric 2.18 important?

Issuing the appropriate credentials to user populations is meaningless unless agencies require the use of these credentials. Improper authentication of credentials may put an agency at risk.