- SQL6-D0-003800 - SQL Server must be configured to utilize the most-secure authentication method available.
- SQL6-D0-004000 - SQL Server must protect against a user falsely repudiating by ensuring all accounts are individual, unique, and not shared.
- SQL6-D0-006700 - SQL Server software installation account must be restricted to authorized users.
- SQL6-D0-006800 - Database software, including DBMS configuration files, must be stored in dedicated directories, separate from the host OS and other applications.
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - SSL 2.0 Client DisabledByDefault
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - SSL 2.0 Client Enabled
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - SSL 2.0 Server DisabledByDefault
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - SSL 2.0 Server Enabled
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - SSL 3.0 Client DisabledByDefault
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - SSL 3.0 Client Enabled
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - SSL 3.0 Server DisabledByDefault
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - SSL 3.0 Server Enabled
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - TLS 1.0 Client DisabledByDefault
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - TLS 1.0 Client Enabled
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - TLS 1.0 Server DisabledByDefault
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - TLS 1.0 Server Enabled
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - TLS 1.1 Client DisabledByDefault
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - TLS 1.1 Client Enabled
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - TLS 1.1 Server DisabledByDefault
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - TLS 1.1 Server Enabled
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - TLS 1.2 Client DisabledByDefault
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - TLS 1.2 Client Enabled
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - TLS 1.2 Server DisabledByDefault
- SQL6-D0-008300 - Confidentiality of controlled information during transmission through the use of an approved TLS version - TLS 1.2 Server Enabled
- SQL6-D0-008400 - SQL Server must enforce authorized access to all PKI private keys stored/utilized by SQL Server.
- SQL6-D0-008700 - SQL Server must use NIST FIPS 140-2 validated cryptographic modules for cryptographic operations.
- SQL6-D0-009200 - SQL Server must maintain the authenticity of communications sessions by guarding against man-in-the-middle attacks that guess at Session ID values.
- SQL6-D0-009900 - SQL Server must prevent unauthorized and unintended information transfer via shared system resources.
- SQL6-D0-010000 - Access to database files must be limited to relevant processes and to authorized, administrative users.
- SQL6-D0-011200 - SQL Server must record time stamps in audit records and application data that can be mapped to Coordinated Universal Time (UTC, formerly GMT).
