CAT 2 V0003810 NAME: DBMS PKI authentication DESCRIPTION: DBMS authentication should require use of a DoD PKI certificate.

[doconnor24]

Implement PKI authentication for all accounts defined within the database where applicable. Applications may use host system (server) certificates to authenticate. For MAC 3 systems, use of the DoD PKI Class 3 certificate and hardware security token (when available) at minimum is required. For MAC 1 and 2 systems, use of the DoD PKI Class 3 or 4 certificate and hardware security token (when available) or an NSA-certified product at minimum is required.