STIGQter: STIG Summary: McAfee Application Control 8.x Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The organizations written policy must include a process for how whitelisted applications are deemed to be allowed.

DISA Rule

SV-213324r506897_rule

Vulnerability Number

V-213324

Group Title

SRG-APP-000386

Rule Version

MCAC-PO-000109

Severity

CAT II

CCI(s)

• CCI-001774 - The organization employs a deny-all, permit-by-exception policy to allow the execution of authorized software programs on the information system.

Weight

10

Fix Recommendation

Follow the formal change and acceptance process to update the written policy to include a process for how applications are vetted and deemed to be allowed.

Check Contents

Consult with the ISSO/ISSM to review the organizational-specific written policy for the McAfee Application Control software.

Verify the written policy includes a process for how applications are vetted and deemed to be allowed.

If no written policy exists, this is a finding.

If written policy does not include a process for vetting applications before allowing them, this is a finding.

Vulnerability Number

V-213324

Documentable

False

Rule Version

MCAC-PO-000109

Severity Override Guidance

Consult with the ISSO/ISSM to review the organizational-specific written policy for the McAfee Application Control software.

Verify the written policy includes a process for how applications are vetted and deemed to be allowed.

If no written policy exists, this is a finding.

If written policy does not include a process for vetting applications before allowing them, this is a finding.

Check Content Reference

M

Target Key

3982

Comments