Doc:NIST SP 800-53r3 Appendix F/MA-4/4
- (4) The organization protects non-local maintenance sessions through the use of a strong authenticator tightly bound to the user and by separating the maintenance session from other network sessions with the information system by either:
- (a) Physically separated communications paths; or
- (b) Logically separated communications paths based upon encryption.
- Enhancement Supplemental Guidance: Related control: SC-13.