Wireless Remote Access Policy Security Implementation Guide

Version	Date	Finding Count (3)			Downloads
1	2013-03-12 2011-10-10 2011-10-10 2011-10-10	CAT I (High): 0	CAT II (Med): 0	CAT III (Low): 3	Excel	JSON	XML

STIG Description
This STIG contains the policy, training, and operating procedure security controls for the use of wireless LAN clients in the DoD environment.

Classified	Public	Sensitive
I - Mission Critial Classified	I - Mission Critial Public	I - Mission Critial Sensitive	II - Mission Support Classified	II - Mission Support Public	II - Mission Support Sensitive	III - Administrative Classified	III - Administrative Public	III - Administrative Sensitive

Finding ID	Severity	Title	Description
V-25036	Low	The site physical security policy must include a statement if CMDs with digital cameras (still and video) are permitted or prohibited on or in the DoD facility.	Wireless client, networks, and data could be compromised if unapproved wireless remote access is used. In most cases, unapproved devices are not managed and configured as required by the...
V-25034	Low	Users must receive training on required topics before they are authorized to access a DoD network via a wireless remote access device.	Improper use of wireless remote access to a DoD network can compromise both the wireless client and the network, as well as, expose DoD data to unauthorized people. Without adequate training...
V-25035	Low	The site must have a Wireless Remote Access Policy signed by the site DAA, Commander, Director, or other appropriate authority.	Wireless clients, DoD data, and the DoD network could be compromised if operational policies for the use of wireless remote access are not documented by the site.