NIST 800-53 REV 5 • SYSTEM AND COMMUNICATIONS PROTECTION

SC-40(2)Reduce Detection Potential

Implement cryptographic mechanisms to reduce the detection potential of wireless links to {{ insert: param, sc-40.02_odp }}.

CMMC Practice Mapping

No direct CMMC mapping

NIST 800-171 Mapping

No direct NIST 800-171 mapping

Related Controls

Supplemental Guidance

The implementation of cryptographic mechanisms to reduce detection potential is used for covert communications and to protect wireless transmitters from geo-location. It also ensures that the spread spectrum waveforms used to achieve a low probability of detection are not predictable by unauthorized individuals. Mission requirements, projected threats, concept of operations, and applicable laws, executive orders, directives, regulations, policies, and standards determine the levels to which wireless links are undetectable.

Practitioner Notes

Reduce the detection potential of your wireless communications — make it harder for adversaries to detect and locate your wireless infrastructure.

Example 1: Reduce WiFi transmit power to the minimum level needed for coverage within your facility. Excess power bleeds outside your building, making your network detectable and attackable from the parking lot or adjacent buildings.

Example 2: Disable SSID broadcast on sensitive wireless networks and use directional antennas that focus the signal inside your facility rather than radiating in all directions. This reduces the network's visibility to external observers.

More System and Communications Protection Controls

SC-1 Policy and Procedures SC-2 Separation of System and User Functionality SC-2(1) Interfaces for Non-privileged Users SC-2(2) Disassociability