Request for comments - DISA releases draft Mozilla Firefox STIG

The Defense Information Systems Agency recently released the draft Mozilla Firefox Security Technical Implementation Guide (STIG) Security Content Automation Protocol (SCAP) benchmark for review.

Customers who possess a Common Access Card (CAC) that has valid Department of Defense (DOD) certificates can submit comments and/or recommended changes to the draft benchmark by 18 April 2022 on the comment matrix spreadsheet, which is located with the benchmark at

The draft benchmark and comment matrix are also available on the Cyber Exchange public site at

Please email comments to and include the title and version of the benchmark in the subject line.

Users who are unable to find and download these files or other content can report their issue to the Cyber Exchange web team at