The access via untrusted networks requirements are component-specific and can be located as requirements for each specific component type.

VeriDevOps / ARQAN.action

GitHub Action Security Requirement Analysis with STIG database for Windows platform.

Apache License 2.0

0 stars 0 forks source link

Open agilebotanist opened 9 months ago

github-actions[bot] commented 9 months ago

Recommended STIG:

V-220818
- windows_10
- Systems must at least attempt device authentication using certificates.
V-220804
- windows_10
- Hardened UNC Paths must be defined to require mutual authentication and integrity for at least the \\SYSVOL and \\NETLOGON shares.
V-220942
- windows_10
- The system must be configured to use FIPS-compliant algorithms for encryption, hashing, and signing.
V-220807
- windows_10
- Connections to non-domain networks when connected to a domain authenticated network must be blocked.
V-220914
- windows_10
- Outgoing secure channel traffic must be encrypted or signed.

github-actions[bot] commented 9 months ago

See RQCODE tests for recommended STIGs :smiley: :

V-220818 Systems must at least attempt device authentication using certificates.
V-220942 The system must be configured to use FIPS-compliant algorithms for encryption, hashing, and signing.
V-220807 Connections to non-domain networks when connected to a domain authenticated network must be blocked.
V-220914 Outgoing secure channel traffic must be encrypted or signed.

:bulb: Tip: You may check the STIG requirements by calling java -jar RQCODE.jar V_xxxxx