Skip to content

II - Mission Support Sensitive

Rules and Groups employed by this XCCDF Profile

  • SRG-APP-000516-NDM-000344

    <GroupDescription></GroupDescription>
    Group
  • CounterACT must obtain its public key certificates from an appropriate certificate policy through an approved service provider.

    &lt;VulnDiscussion&gt;For user certificates, each organization obtains certificates from an approved, shared service provider, as required by OMB p...
    Rule Medium Severity
  • SRG-APP-000516-NDM-000344

    <GroupDescription></GroupDescription>
    Group
  • CounterACT must obtain its public key certificates from an appropriate certificate policy through an approved service provider.

    &lt;VulnDiscussion&gt;For user certificates, each organization obtains certificates from an approved, shared service provider, as required by OMB p...
    Rule Medium Severity
  • SRG-APP-000516-NDM-000333

    <GroupDescription></GroupDescription>
    Group
  • CounterACT must enable Threat Protection notifications to alert security personnel to Cyber events detected by a CounterACT IAW CJCSM 6510.01B.

    &lt;VulnDiscussion&gt;CJCSM 6510.01B, "Cyber Incident Handling Program", in subsection e.(6)(c) sets forth requirements for Cyber events detected b...
    Rule Medium Severity
  • SRG-APP-000408-NDM-000314

    <GroupDescription></GroupDescription>
    Group
  • CounterACT appliances performing maintenance functions must restrict use of these functions to authorized personal only.

    &lt;VulnDiscussion&gt;There are security-related issues arising from software brought into the network device specifically for diagnostic and repai...
    Rule High Severity
  • SRG-APP-000516-NDM-000337

    <GroupDescription></GroupDescription>
    Group
  • CounterACT must employ automated mechanisms to centrally apply authentication settings.

    &lt;VulnDiscussion&gt;The use of authentication servers or other centralized management servers for providing centralized authentication services i...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules