Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The MEM client must provide users with the option to deny acceptance of a certificate when the certificates revocation status cannot be verified.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-32776 | WIR-WMS-MEM-01 | SV-43122r1_rule | IAKM-1 IAKM-2 | Low |
| Description |
|---|
| When the certificate revocation status cannot be verified, the email sender's identify cannot be verified and the user must have the capability to accept or deny the certificate and act on the email content based on sensitivity of the email content and mission needs. |
| STIG | Date |
|---|---|
| Mobile Email Management (MEM) Server Security Technical Implementation Guide (STIG) | 2012-07-20 |
Details
| Check Text ( C-41109r3_chk ) |
|---|
| Verify the MEM client provides users with the option to deny acceptance of a certificate when the certificate's revocation status cannot be verified. Talk to the site system administrator and have them show this capability exists in the MEM server. Also, review MEM product documentation. Mark as a finding if the MEM server does not have required features. |
| Fix Text (F-36657r2_fix) |
|---|
| Use a MEM product that provides users with the option to deny acceptance of a certificate when the certificate's revocation status cannot be verified. |