STIGQter: STIG Summary: Test and Development Zone B Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 26 Oct 2018:

The test and development infrastructure must use a gateway to separate access to DoD operational networks.

DISA Rule

SV-51485r1_rule

Vulnerability Number

V-39627

Group Title

ENTD0160 - The test and development environment does have a gateway.

Rule Version

ENTD0160

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Install a gateway to separate the test and development environment from the DoD operational network. Document it in the test and development network diagrams.

Check Contents

Review the network diagrams and physically check to see whether the organization has a gateway implemented for the test and development environment. If the organization has not documented or implemented a gateway for the test and development environment, this is a finding.

Vulnerability Number

V-39627

Documentable

False

Rule Version

ENTD0160

Severity Override Guidance

Review the network diagrams and physically check to see whether the organization has a gateway implemented for the test and development environment. If the organization has not documented or implemented a gateway for the test and development environment, this is a finding.

Check Content Reference

M

Target Key

1132

Comments