Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-14034 | WIR0500 | SV-14645r1_rule | ECWN-1 | Low |
Description |
---|
Sensitive data stored on the RFID scanner and transmitted to the workstation could be compromised. |
STIG | Date |
---|---|
RFID Scanner Security Technical Implementation Guide (STIG) | 2014-03-18 |
Check Text ( C-11509r1_chk ) |
---|
Detail Policy Requirements: If a wireless connection (e.g. WLAN, Bluetooth) is used between the RFID scanner and RFID workstation, the following requirements must be followed: - If WLAN is used for the wireless connection, assign “WLAN Client” asset posture in VMS to the workstation (or PDA) asset and complete WLAN checks assigned to the workstation (or PDA). - If Bluetooth or some other wireless technology is used for the wireless connection, assign “Bluetooth” asset posture in VMS to the workstation (or PDA) asset and complete Bluetooth checks assigned to the workstation(or PDA). Check Procedures: Verify that the appropriate VMS wireless posture has been assigned to the RFID workstation (or PDA) asset and the appropriate checks have been completed. Mark as a finding if the requirement has not been met. |
Fix Text (F-13509r1_fix) |
---|
Comply with the security requirements associated with the technology enabling wireless communication between the RFID scanner and RFID computing infrastructure. |