The operating system must authenticate peripherals before establishing a connection.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-203730 | SRG-OS-000378-GPOS-00163 | SV-203730r851801_rule | Medium |
| Description |
|---|
| Without authenticating devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity. Peripherals include, but are not limited to, such devices as flash drives, external storage, and printers. |
| STIG | Date |
|---|---|
| General Purpose Operating System Security Requirements Guide | 2022-11-21 |
Details
| Check Text ( C-3855r375197_chk ) |
|---|
| Verify the operating system authenticates peripherals before establishing a connection. If it does not, this is a finding. |
| Fix Text (F-3855r375198_fix) |
|---|
| Configure the operating system to authenticate peripherals before establishing a connection. |