STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← SC-20 (2) — Secure Name/Address Resolution Service (Authoritative Source)

CCI-002463

Definition

Provide data origin artifacts for internal name/address resolution queries.

Parent Control

SC-20 (2)Secure Name/Address Resolution Service (Authoritative Source)System and Communications Protection

Linked STIG Checks (8)

V-272417CAT IA BIND 9.x server implementation must maintain the integrity and confidentiality of DNS information while it is being prepared for transmission, in transmission, and in use and must perform integrity verification and data origin verification for all DNS information.BIND 9.x Security Technical Implementation GuideV-265982CAT IIAn authoritative name server must be configured to enable DNSSEC Resource Records.F5 BIG-IP TMOS DNS Security Technical Implementation GuideV-214188CAT IIA DNS server implementation must provide data origin artifacts for internal name/address resolution queries.Infoblox 7.x DNS Security Technical Implementation GuideV-233893CAT IIThe Infoblox DNS service member must provide data origin artifacts for internal name/address resolution queries.Infoblox 8.x DNS Security Technical Implementation GuideV-215611CAT IIThe Windows 2012 DNS Servers IP address must be statically defined and configured locally on the server.Microsoft Windows 2012 Server Domain Name System Security Technical Implementation GuideV-215612CAT IIThe Windows 2012 DNS Server must return data information in responses to internal name/address resolution queries.Microsoft Windows 2012 Server Domain Name System Security Technical Implementation GuideV-259374CAT IIThe Windows DNS Server's IP address must be statically defined and configured locally on the server.Microsoft Windows Server Domain Name System (DNS) Security Technical Implementation GuideV-259375CAT IIThe Windows DNS Server must return data information in response to internal name/address resolution queries.Microsoft Windows Server Domain Name System (DNS) Security Technical Implementation Guide