STIGQter: STIG Summary: Application Layer Gateway (ALG) Security Requirements Guide (SRG) Version: 1 Release: 2 Benchmark Date: 24 Jul 2015:

The ALG that provides intermediary services for TLS must be configured to comply with the required TLS settings in NIST SP 800-52.

DISA Rule

SV-68605r1_rule

Vulnerability Number

V-54359

Group Title

SRG-NET-000062-ALG-000150

Rule Version

SRG-NET-000062-ALG-000150

Severity

CAT II

CCI(s)

• CCI-000068 - The information system implements cryptographic mechanisms to protect the confidentiality of remote access sessions.

Weight

10

Fix Recommendation

If intermediary services for TLS are provided, configure the ALG to comply with applicable required TLS settings in NIST PUB SP 800-52.

Check Contents

If the ALG does not provide intermediary services for TLS, or application protocols that use TLS (e.g., DNSSEC or HTTPS), this is not applicable.

Verify the ALG is configured to implement the applicable required TLS settings in NIST PUB SP 800-52.

If the ALG is not configured to implement the applicable required TLS settings in NIST PUB SP 800-52, this is a finding.

Vulnerability Number

V-54359

Documentable

False

Rule Version

SRG-NET-000062-ALG-000150

Severity Override Guidance

If the ALG does not provide intermediary services for TLS, or application protocols that use TLS (e.g., DNSSEC or HTTPS), this is not applicable.

Verify the ALG is configured to implement the applicable required TLS settings in NIST PUB SP 800-52.

If the ALG is not configured to implement the applicable required TLS settings in NIST PUB SP 800-52, this is a finding.

Check Content Reference

M

Target Key

2489

Comments