Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-73213 | SEMM-15-100060 | SV-87865r1_rule | Medium |
Description |
---|
All ports, protocols, and services used on DoD networks must be approved and registered via the DoD Ports, Protocols, Services Management (PPSM) process. This is to insure that a risk assessment has been completed before a new port, protocol, or service is configured on a DoD network and has been approved by proper DoD authorities. Otherwise, the new port, protocol, or service could cause a vulnerability to the DoD network, which could be exploited by an adversary. SFR ID: FMT_SMF.1.1(1) Refinement |
STIG | Date |
---|---|
Samsung SDS EMM v1.5.x Security Technical Implementation Guide | 2017-01-20 |
Check Text ( C-73315r1_chk ) |
---|
Ask the MDM administrator for a list of ports, protocols and services that have been configured on the host-based firewall. Verify all allowed ports, protocols, and services are included on the DoD PPSM CAL list. If any allowed ports, protocols, and services on the MDM host-based firewall are not included on the DoD PPSM CAL list, this is a finding. |
Fix Text (F-79659r1_fix) |
---|
Turn off any ports, protocols, and services on the MDM host-based firewall that are not on the DoD Ports, Protocols, Services Management (PPSM) Category Assurance Levels (CAL) list. |