Skip to content
Log In

GPOS SRG: General Purpose Operating System Security Requirements Guide

This General Purpose Operating System (GPOS) Security Requirements Guide (SRG) provides the technical security policies and requirements for applying security concepts to systems. This SRG specifies security requirements for commercial-off-the-shelf (COTS) or government- off-the-shelf (GOTS) general purpose operating systems (GPOSs) in networked environments. An operating system conformant to this SRG may be operated as a server system within a data center or a client system used directly by one or more human users. This guide assumes operation within a single security domain. Cross-domain solution (CDS) and Multi-Level Security (MLS) requirements are beyond the scope of this guide.

Scheme
public.cyber.mil /stigs/downloads/
Published by
DoD Cyber Exchange (sponsored by DISA: Defense Information Systems Agency)

  • SRG-OS-000047-GPOS-00023

    Show

  • SRG-OS-000051-GPOS-00024

    The operating system must provide the capability to centrally review and analyze audit records from multiple components within the system.
    Show

  • SRG-OS-000054-GPOS-00025

    The operating system must provide the capability to filter audit records for events of interest based upon all audit fields within audit records.
    Show

  • SRG-OS-000055-GPOS-00026

    The operating system must use internal system clocks to generate time stamps for audit records.
    Show

  • SRG-OS-000057-GPOS-00027

    The operating system must protect audit information from unauthorized read access.
    Show

  • SRG-OS-000058-GPOS-00028

    The operating system must protect audit information from unauthorized modification.
    Show

  • SRG-OS-000059-GPOS-00029

    The operating system must protect audit information from unauthorized deletion.
    Show

  • SRG-OS-000062-GPOS-00031

    The operating system must provide audit record generation capability for DoD-defined auditable events for all operating system components.
    Show

  • SRG-OS-000063-GPOS-00032

    The operating system must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited.
    Show

  • SRG-OS-000064-GPOS-0003

    The operating system must generate audit records when successful/unsuccessful attempts to access privileges occur.
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules