Adobe Reader DC must enable FIPS mode.

An XCCDF Rule

Description

<VulnDiscussion>Use of weak or untested encryption algorithms undermines the purposes of utilizing encryption to protect data. The application must implement cryptographic modules adhering to the higher standards approved by the federal government since this provides assurance they have been tested and validated.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-213193r400876_rule
Severity: Medium
References: CCI-002450
Updated: about 1 year ago

Configure the following registry value:

Note: The Key Names "bFIPSMode" is not created by default in the Adobe Reader DC install and must be created.

Registry Hive: HKEY_CURRENT_USER
Registry Path: \Software\Adobe\Acrobat Reader\DC\AVGeneral
Value Name: bFIPSMode 
Type: REG_DWORD
Value: 1

Adobe Reader DC must enable FIPS mode.

Description

Remediation - Manual Procedure