STIGQter: STIG Summary: Test and Development Zone B Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 26 Oct 2018:

The test and development infrastructure must use a DMZ to import and export data between test and development environments and DoD operational networks.

DISA Rule

SV-51525r1_rule

Vulnerability Number

V-39658

Group Title

ENTD0190 - Data is not transported through a DMZ.

Rule Version

ENTD0190

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure and implement a DMZ for traffic entering and leaving the test and development environment.

Check Contents

Determine whether there is a DMZ properly configured for traffic entering and leaving the test and development environment. If a DMZ for traffic entering and leaving the test and development environment is not implemented, this is a finding.

Vulnerability Number

V-39658

Documentable

False

Rule Version

ENTD0190

Severity Override Guidance

Determine whether there is a DMZ properly configured for traffic entering and leaving the test and development environment. If a DMZ for traffic entering and leaving the test and development environment is not implemented, this is a finding.

Check Content Reference

M

Target Key

1132

Comments