STIGQter: STIG Summary: Application Layer Gateway (ALG) Security Requirements Guide (SRG) Version: 1 Release: 2 Benchmark Date: 24 Jul 2015:

The ALG must detect, at a minimum, mobile code that is unsigned or exhibiting unusual behavior, has not undergone a risk assessment, or is prohibited for use based on a risk assessment.

DISA Rule

SV-68855r1_rule

Vulnerability Number

V-54609

Group Title

SRG-NET-000228-ALG-000108

Rule Version

SRG-NET-000228-ALG-000108

Severity

CAT II

CCI(s)

• CCI-001166 - The information system identifies organization-defined unacceptable mobile code.

Weight

10

Fix Recommendation

Configure the ALG to detect, at a minimum, mobile code that is unsigned or exhibiting unusual behavior, has not undergone a risk assessment, or is prohibited for use based on a risk assessment.

Check Contents

Verify the ALG detects, at a minimum, mobile code that is unsigned or exhibiting unusual behavior, has not undergone a risk assessment, or is prohibited for use based on a risk assessment.

If the ALG does not detect, at a minimum, mobile code that is unsigned or exhibiting unusual behavior, has not undergone a risk assessment, or is prohibited for use based on a risk assessment, this is a finding.

Vulnerability Number

V-54609

Documentable

False

Rule Version

SRG-NET-000228-ALG-000108

Severity Override Guidance

Verify the ALG detects, at a minimum, mobile code that is unsigned or exhibiting unusual behavior, has not undergone a risk assessment, or is prohibited for use based on a risk assessment.

If the ALG does not detect, at a minimum, mobile code that is unsigned or exhibiting unusual behavior, has not undergone a risk assessment, or is prohibited for use based on a risk assessment, this is a finding.

Check Content Reference

M

Target Key

2489

Comments