Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Citrix Virtual Apps and Desktop 7.x StoreFront Security Technical Implementation Guide
Overview
| Version | Date | Finding Count (2) | ||
|---|---|---|---|---|
| 1 | 2021-02-01 | CAT I (High): 1 | CAT II (Med): 1 | CAT III (Low): 0 |
| STIG Description |
|---|
| This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil. |
Available Profiles
Findings (MAC II - Mission Support Sensitive)
| Finding ID | Severity | Title | Description |
|---|---|---|---|
| V-234251 | High | The Citrix Storefront server must implement DoD-approved encryption to protect the confidentiality of remote access sessions. | Without confidentiality protection mechanisms, unauthorized individuals may gain access to sensitive information via a remote access session. Remote access is access to DoD nonpublic information... |
| V-234252 | Medium | Citrix StoreFront server must accept Personal Identity Verification (PIV) credentials. | The use of PIV credentials facilitates standardization and reduces the risk of unauthorized access. DoD has mandated the use of the Common Access Card (CAC) to support identity management and... |