NIST 800-171 R-3.1.12
Monitor and Control Remote Access
Official citation: 3.1.12
Class: core · Severity: high
Statement of the obligation — verify against source
3.1.12
What it means
Route all remote access — connections from outside your network over the Internet, dial-up, broadband, or wireless — through controlled, monitored channels so you can see and govern who connects. Encrypted VPNs are common and, when properly provisioned, can let you treat such connections much like internal ones (though encrypted tunnels can hinder traffic inspection for malicious code). Automated monitoring of remote sessions helps detect attacks and enforce remote-access policy across servers, laptops, phones, and tablets.
Educational reference only — not legal advice. Consult a qualified assessor or attorney for binding compliance determinations.