STIGQter: STIG Summary: Application Layer Gateway (ALG) Security Requirements Guide (SRG) Version: 1 Release: 2 Benchmark Date: 24 Jul 2015:

The ALG providing intermediary services for remote access communications traffic must use NIST FIPS-validated cryptography to protect the integrity of remote access sessions.

DISA Rule

SV-68607r1_rule

Vulnerability Number

V-54361

Group Title

SRG-NET-000063-ALG-000012

Rule Version

SRG-NET-000063-ALG-000012

Severity

CAT II

CCI(s)

• CCI-001453 - The information system implements cryptographic mechanisms to protect the integrity of remote access sessions.

Weight

10

Fix Recommendation

If intermediary services for remote access communications traffic are provided, configure the ALG to use cryptography to protect the integrity of remote access sessions.

Check Contents

If the ALG does not serve as an intermediary for remote access traffic (e.g., web content filter, TLS and webmail), this is not applicable.

Verify the ALG uses cryptography to protect the integrity of remote access sessions.

If the ALG does not use cryptography to protect the integrity of remote access sessions, this is a finding.

Vulnerability Number

V-54361

Documentable

False

Rule Version

SRG-NET-000063-ALG-000012

Severity Override Guidance

If the ALG does not serve as an intermediary for remote access traffic (e.g., web content filter, TLS and webmail), this is not applicable.

Verify the ALG uses cryptography to protect the integrity of remote access sessions.

If the ALG does not use cryptography to protect the integrity of remote access sessions, this is a finding.

Check Content Reference

M

Target Key

2489

Comments