STIGQter: STIG Summary: Application Layer Gateway (ALG) Security Requirements Guide (SRG) Version: 1 Release: 2 Benchmark Date: 24 Jul 2015:

The ALG that is part of a CDS must uniquely identify and authenticate destination by organization, system, application, and/or individual for information transfer.

DISA Rule

SV-68727r1_rule

Vulnerability Number

V-54481

Group Title

SRG-NET-000326-ALG-000076

Rule Version

SRG-NET-000326-ALG-000076

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.
• CCI-002207 - The information system uniquely identifies and authenticates destination by organization, system, application, and/or individual for information transfer.

Weight

10

Fix Recommendation

If the ALG is part of a CDS, configure the ALG to uniquely identify and authenticate destination by organization, system, application, and/or individual for information transfer.

Check Contents

If the ALG is not part of a CDS, this is not applicable.

Verify the ALG uniquely identifies and authenticates destination by organization, system, application, and/or individual for information transfer.

If the ALG is not configured to uniquely identify and authenticate destination by organization, system, application, and/or individual for information transfer, this is a finding.

Vulnerability Number

V-54481

Documentable

False

Rule Version

SRG-NET-000326-ALG-000076

Severity Override Guidance

If the ALG is not part of a CDS, this is not applicable.

Verify the ALG uniquely identifies and authenticates destination by organization, system, application, and/or individual for information transfer.

If the ALG is not configured to uniquely identify and authenticate destination by organization, system, application, and/or individual for information transfer, this is a finding.

Check Content Reference

M

Target Key

2489

Comments