Title

The KVM switch feature for automatically toggling between ISs must be disabled. (Cat II impact)

Discussion

The feature that automatically toggles between connected ISs or active ISs can cause a screen to be automatically displayed that contains sensitive information. This can lead to the compromise of sensitive data. The ISSO or SA will ensure the feature for automatically toggling between ISs is disabled.

Check Content

If the KVM switch has the feature for automatically toggling between ISs, the reviewer will verify, with the assistance of the ISSO or SA, that it is disabled. If the feature is disabled but the configuration is not protected then this is a finding.

Fix Text

Disable the feature for automatically toggling between ISs. If the KVM switch can be configured to disable the ability to switch peripherals other than the keyboard, video monitor, and mouse, modify the configuration to disable this feature. If the KVM switch cannot be configured to disable this feature replace the KVM switch with a KVM switch that is compliant.

Additional Identifiers

Rule ID: SV-6844r2_rule

Vulnerability ID: V-6682

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.