STIGQter STIGQter: STIG Summary: Keyboard Video and Mouse Switch STIG Version: 2 Release: 6 Benchmark Date: 22 Jan 2016: A KVM switch must not be cascaded while being attached to ISs of different classification levels.

DISA Rule

SV-6878r2_rule

Vulnerability Number

V-6700

Group Title

KVM differing classification levels cascaded

Rule Version

KVM02.006.00

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

Develop a plan to remove all cascaded KVM switches as soon as possible without disrupting production. Connect each IS to an open port on a KVM switch that is in turn only connected to a keyboard, video monitor, and mouse, not to another KVM switch. Obtain CM approval for the plan and execute the plan at the earliest opportunity.

Check Contents

The reviewer will check the connections for the KVM switch to verify it is not connected to another KVM switch when ISs of different classification levels are attached. If KVM switches are cascaded, this is a finding.

Vulnerability Number

V-6700

Documentable

False

Rule Version

KVM02.006.00

Severity Override Guidance

The reviewer will check the connections for the KVM switch to verify it is not connected to another KVM switch when ISs of different classification levels are attached. If KVM switches are cascaded, this is a finding.

Check Content Reference

M

Potential Impact

Removal of cascading will require separate
keyboard, video monitor, and mouse for each KVM
switch.

Responsibility

System Administrator

Target Key

550

Comments