Skip to content
Log In

GPOS SRG: General Purpose Operating System Security Requirements Guide

This General Purpose Operating System (GPOS) Security Requirements Guide (SRG) provides the technical security policies and requirements for applying security concepts to systems. This SRG specifies security requirements for commercial-off-the-shelf (COTS) or government- off-the-shelf (GOTS) general purpose operating systems (GPOSs) in networked environments. An operating system conformant to this SRG may be operated as a server system within a data center or a client system used directly by one or more human users. This guide assumes operation within a single security domain. Cross-domain solution (CDS) and Multi-Level Security (MLS) requirements are beyond the scope of this guide.

Scheme
public.cyber.mil /stigs/downloads/
Published by
DoD Cyber Exchange (sponsored by DISA: Defense Information Systems Agency)

  • SRG-OS-000001-GPOS-00001

    The operating system must provide automated mechanisms for supporting account management functions.
    Show

  • SRG-OS-000002-GPOS-00002

    The operating system must automatically remove or disable temporary user accounts after 72 hours.
    Show

  • SRG-OS-000004-GPOS-00004

    The operating system must audit all account creations.
    Show

  • SRG-OS-000021-GPOS-00005

    The operating system must enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period.
    Show

  • SRG-OS-000023-GPOS-00006

    The operating system must display the Standard Mandatory DoD Notice and Consent Banner before granting local or remote access to the system.
    Show

  • SRG-OS-000027-GPOS-00008

    The operating system must limit the number of concurrent sessions to ten for all accounts and/or account types.
    Show

  • SRG-OS-000028-GPOS-00009

    The operating system must retain a users session lock until that user reestablishes access using established identification and authentication proc...
    Show

  • SRG-OS-000029-GPOS-00010

    The operating system must initiate a session lock after a 15-minute period of inactivity for all connection types.
    Show

  • SRG-OS-000030-GPOS-00011

    The operating system must provide the capability for users to directly initiate a session lock for all connection types.
    Show

  • SRG-OS-000031-GPOS-00012

    The operating system must conceal, via the session lock, information previously visible on the display with a publicly viewable image.
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules