A network attached KVM switch is configured to control the power supplied to the ISs attached to the KVM switch or the connectors on the KVM switch that support this feature are not blocked with tamper resistant seals.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-6716	KVM03.012.00	SV-6916r1_rule	DCBP-1 PECF-1 PECF-2	Medium

Description
If a network attached KVM switch can control the power to the ISs attached to it and the KVM switch is compromised, a denial of service can be caused by powering off all the ISs attached to the KVM switch without accessing the individual ISs. The IAO will ensure that any feature that allows the KVM switch to directly control the power supplied to the ISs is not configured or used, and that any connectors on the KVM switch used to support this feature are blocked with a tamper resistant seal.

Description

If a network attached KVM switch can control the power to the ISs attached to it and the KVM switch is compromised, a denial of service can be caused by powering off all the ISs attached to the KVM switch without accessing the individual ISs. The IAO will ensure that any feature that allows the KVM switch to directly control the power supplied to the ISs is not configured or used, and that any connectors on the KVM switch used to support this feature are blocked with a tamper resistant seal.

STIG	Date
Keyboard Video and Mouse Switch STIG	2014-08-04

Details

Check Text ( C-2733r1_chk )
wWith the assistance of the IAO, verify that the network attached KVM switch is not configured to control the power of the ISs attached and that all connectors on the KVM switch that support this functionality are blocked with tamper resistant seals.

Fix Text (F-6323r1_fix)
Remove the KVM switch’s control over the power supplied to the ISs and block any connectors on the KVM switch used to support this feature with a tamper resistant seals.