Navigate

Check: SRG-OS-000378-VMM-001540

Virtual Machine Manager SRG: SRG-OS-000378-VMM-001540 (in versions v2 r2 through v1 r3)

Title

The VMM must authenticate peripherals before establishing a connection. (Cat II impact)

Discussion

Without authenticating devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity. Peripherals include, but are not limited to, such devices as flash drives, external storage, and printers. This requirement is applicable to devices capable of authentication.

Check Content

Verify the VMM authenticates peripherals before establishing a connection. If it does not, this is a finding.

Fix Text

Configure the VMM to authenticate peripherals before establishing a connection.

Additional Identifiers

Rule ID: SV-207483r958820_rule

Vulnerability ID: V-207483

Group Title: SRG-OS-000378

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-001958	Authenticate organization-defined devices and/or types of devices before establishing a local, remote, and/or network connection.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
IA-3	Device Identification and Authentication