STIGQter: STIG Summary: Tanium 7.0 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 July 2018:

Tanium endpoint files must be protected from file encryption actions.

DISA Rule

SV-93301r1_rule

Vulnerability Number

V-78595

Group Title

SRG-APP-000516

Rule Version

TANS-CL-000012

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Implement excluding policies within the file-based encryption software solution to exclude the file level encryption of the Tanium client program files.

Check Contents

Consult with the Tanium System Administrator to determine the file-based encryption software used on the Tanium clients.

Review the settings for the file-based encryption software.

Validate exclusions exist that exclude the Tanium program files from being encrypted by the file-based encryption software.

If exclusions do not exist, this is a finding.

Vulnerability Number

V-78595

Documentable

False

Rule Version

TANS-CL-000012

Severity Override Guidance

Consult with the Tanium System Administrator to determine the file-based encryption software used on the Tanium clients.

Review the settings for the file-based encryption software.

Validate exclusions exist that exclude the Tanium program files from being encrypted by the file-based encryption software.

If exclusions do not exist, this is a finding.

Check Content Reference

M

Target Key

3215

Comments