General Cyber Exchange Announcements
Nothing Found
Sorry, no posts matched your criteria
SRGs/STIGs Announcements
DISA recently released the following updated Security Guidance, Security Readiness Review Scripts, and Benchmarks.
Note: The STIGs converted to NIST SP 800-53 Rev. 5 CCIs in previous quarters have been updated to include the deprecated Rev. 4 CCIs to ensure all vulnerabilities are captured in eMASS.
Unclassified Application STIGs:
https://cyber.mil/stigs/downloads/?_dl_facet_stigs=app-security
https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=app-security
Apache Server 2.4 Unix STIG
Apache Server 2.4 Windows STIG
Application Security and Development STIG – Ver 6, Rel 2
Application Server SRG – Ver 4, Rel 2
Container Platform SRG – Ver 2, Rel 2
Database SRG – Ver 4, Rel 3
Dragos Platform 2.x STIG – Ver 1, Rel 2
MariaDB Enterprise 10.x STIG – Ver 2, Rel 3
Microsoft .Net Framework 4.0 STIG – Ver 2, Rel 5
Microsoft Exchange 2016 STIG
Microsoft Exchange 2019 STIG
Microsoft Office 365 ProPlus STIG – Ver 3, Rel 2
Microsoft Office System 2016 STIG – Ver 2, Rel 4
Microsoft SharePoint 2013 STIG – Ver 2, Rel 4
Microsoft SQL Server 2016 STIG
Oracle Database 12c STIG – Ver 3, Rel 3
Palo Alto Networks Prisma Cloud Compute STIG – Ver 2, Rel 2
Rancher Government Solutions RKE2 STIG – Ver 2, Rel 3
Red Hat OpenShift Container Platform 4.12 STIG – Ver 2, Rel 2
Unclassified Mobility STIGs and SRGs:
https://cyber.mil/stigs/downloads/?_dl_facet_stigs=mobility
https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=mobility
Apple iOS/iPadOS 18 STIG – Ver 1, Rel 2
Google Android 13 STIG
Google Android 14 STIG
Google Android 15 STIG
Samsung Android OS 13 with Knox 3.x STIG
Samsung Android OS 14 with Knox 3.x STIG
Samsung Android OS 15 with Knox 3.x STIG
Unified Endpoint Management Server SRG
Unclassified Network STIGs and SRGs:
https://cyber.mil/stigs/downloads/?_dl_facet_stigs=network-perimeter-wireless
https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=network-perimeter-wireless
Application Layer Gateway SRG – Ver 2, Rel 2
Authentication, Authorization, and Accounting Services (AAA) SRG – Ver 2, Rel 2
Central Log Server SRG – Ver 3, Rel 2
Cisco IOS Router STIG
Cisco IOS Switch STIG
Cisco IOS XE Router STIG
Cisco NX OS Switch STIG
Firewall SRG – Ver 3, Rel 2
Forescout STIG
Intrusion Detection and Prevention System Technology SRG – Ver 3, Rel 2
Juniper Router STIG
Juniper SRX Services Gateway STIG
Palo Alto Networks STIG
Virtual Private Network (VPN) SRG – Ver 3, Rel 3
VMware NSX 4.x STIG
Unclassified Operating System STIGs:
https://cyber.mil/stigs/downloads/?_dl_facet_stigs=operating-systems
https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=operating-systems
Apple macOS 14 (Sonoma) STIG – Ver 2, Rel 3
Apple macOS 15 (Sequoia) STIG – Ver 1, Rel 2
Canonical Ubuntu 22.04 LTS STIG – Ver 2, Rel 3
General Purpose Operating System SRG – Ver 3, Rel 2
IBM z/OS STIG
IBM zSecure Suite STIG – Ver 1, Rel 2
Mainframe Product SRG – Ver 3, Rel 3
Microsoft Windows 10 STIG – Ver 3, Rel 3
Microsoft Windows Server 2022 STIG – Ver 2, Rel 3
Oracle Linux 8 STIG – Ver 2, Rel 3
Red Hat Enterprise Linux 8 STIG – Ver 2, Rel 2
Red Hat Enterprise Linux 9 STIG – Ver 2, Rel 3
Solaris 11 SPARC STIG – Ver 3, Rel 2
Solaris 11 x86 STIG – Ver 3, Rel 2
SUSE Linux Enterprise Server 12 STIG – Ver 3, Rel 2
SUSE Linux Enterprise Server 15 STIG – Ver 2, Rel 3
Virtual Machine Manager SRG – Ver 2, Rel 2
VMware vSphere 7.0 STIG
VMware vSphere 8.0 STIG
z/OS ACF2 Products
z/OS RACF Products
z/OS SRR Scripts
z/OS TSS Products STIG
Unclassified Uncategorized STIGs:
https://public.cyber.mil/stigs/downloads/
https://cyber.mil/stigs/downloads
Cloud Computing SRG (also available at https://cyber.mil/dccs/dccs-documents/ and https://public.cyber.mil/dccs/dccs-documents/)
Sunset STIGs:
https://cyber.mil/stigs/downloads/?_dl_facet_stigs=sunset
https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=sunset
Sunset – Apple macOS 13 (Ventura) STIG – Ver 1, Rel 5
Sunset – F5 BIG-IP STIG
Sunset – IBM Aspera Platform 4.2 STIG – Ver 1, Rel 3
Sunset – McAfee Application Control 7.x STIG – Ver 1, Rel 4
Sunset – Microsoft Groove 2013 STIG – Ver 1, Rel 4
Sunset – Microsoft OneNote 2010 STIG – Ver 1, Rel 10
Sunset – Microsoft OneNote 2013 STIG – Ver 1, Rel 4
Sunset – Microsoft Outlook 2010 STIG – Ver 1, Rel 14
Sunset – Microsoft Outlook 2013 STIG – Ver 1, Rel 14
Sunset – Multifunction Device and Network Printers STIG – Ver 2, Rel 15
Sunset – Oracle HTTP Server 12.1.3 STIG – Ver 2, Rel 3
Sunset – Oracle WebLogic Server 12c STIG – Ver 2, Rel 2
Sunset – Storage Area Network STIG – Ver 2, Rel 5
Benchmarks:
https://cyber.mil/stigs/downloads/?_dl_facet_stigs=scap
https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=scap
Adobe Acrobat Reader DC Continuous Track STIG Benchmark – Ver 2, Rel 3
Canonical Ubuntu 20.04 LTS STIG Benchmark – Ver 2, Rel 2
Microsoft Office 365 ProPlus STIG Benchmark – Ver 3, Rel 3
Microsoft Windows 10 STIG Benchmark – Ver 3, Rel 3
Microsoft Windows 11 STIG Benchmark – Ver 2, Rel 3
Microsoft Windows Server 2019 STIG Benchmark – Ver 3, Rel 3
Microsoft Windows Server 2022 STIG Benchmark – Ver 2, Rel 3
Oracle Linux 8 STIG Benchmark – Ver 2, Rel 3
Red Hat Enterprise Linux 8 STIG Benchmark – Ver 2, Rel 2
Red Hat Enterprise Linux 9 STIG Benchmark – Ver 2, Rel 3
SUSE Linux Enterprise Server 12 STIG Benchmark – Ver 3, Rel 2
SUSE Linux Enterprise Server 15 STIG Benchmark – Ver 2, Rel 3
Supplemental Automation Content:
https://cyber.mil/stigs/supplemental-automation-content/
https://public.cyber.mil/stigs/supplemental-automation-content/
Oracle Linux 8 STIG for Ansible – Ver 2, Rel 3
Red Hat Enterprise Linux 8 STIG for Ansible – Ver 2, Rel 2
Red Hat Enterprise Linux 9 STIG for Ansible- Ver 2, Rel 3
SUSE Linux Enterprise Server 15 for Ansible – Ver 2, Rel 3
Request for comments - DISA releases the draft Microsoft SQL Server 2022 STIG for review
The Defense Information Systems Agency recently released the draft Microsoft SQL Server 2022 Security Technical Implementation Guide STIG for review.
Customers who possess a Common Access Card that has valid Department of Defense certificates can submit comments and/or recommended changes to the draft Microsoft SQL Server 2022 STIG by 20 February 2025 on the comment matrix spreadsheet, which is located with the STIG at https://cyber.mil/stigs/downloads/.
The draft Microsoft SQL Server 2022 STIG and comment matrix are also available on the Cyber Exchange public site at https://public.cyber.mil/stigs/downloads.
Please email comments to disa.stig_spt@mail.mil and include the title and version of the Microsoft SQL Server 2022 STIG in the subject line.
Users who are unable to find and download these files or other content can report their issue to the Cyber Exchange web team at dod.cyberexchange@mail.mil.
DISA releases the Xylok Security Suite 20.x Security Technical Implementation Guide
The Defense Information Systems Agency recently approved the Xylok Security Suite 20.x Security Technical Implementation Guide (STIG), which is effective immediately upon release.
Customers who possess a Common Access Card that has valid Department of Defense certificates can obtain the STIG from the DOD Cyber Exchange website at https://cyber.mil/stigs/downloads/. The STIG is also available on the Cyber Exchange public site at https://public.cyber.mil/stigs/downloads.
Users who are unable to find and download the guide or other content can report their issue to the Cyber Exchange web team at dod.cyberexchange@mail.mil. Individuals who have further questions related to STIG content should email the DISA STIG customer support desk at disa.stig_spt@mail.mil.
DISA releases out-of-cycle Microsoft Windows Server STIG updates
The Defense Information Systems Agency has released an out-of-cycle update for the Microsoft Windows Server 2016, 2019, and 2022 Security Technical Implementation Guides (STIGs), which become effective immediately upon release.
This includes the sunsetting of the Microsoft Windows Server 2016 STIG.
Customers who possess a Common Access Card (CAC) that has valid Department of Defense (DOD) certificates can obtain the files from the DOD Cyber Exchange website at https://cyber.mil/stigs/downloads/. The files are also available on the Cyber Exchange public site at https://public.cyber.mil/stigs/downloads.
Users who are unable to find and download the files can report their issue to the Cyber Exchange web team at dod.cyberexchange@mail.mil. Individuals who have further questions related to STIG content should email the DISA STIG customer support desk at disa.stig_spt@mail.mil.
DISA releases the Zebra Android 13 Security Technical Implementation Guide
The Defense Information Systems Agency recently approved the Zebra Android 13 Security Technical Implementation Guide (STIG), which is effective immediately upon release.
Customers who possess a Common Access Card that has valid Department of Defense certificates can obtain the STIG from the DOD Cyber Exchange website at https://cyber.mil/stigs/downloads/. The STIG is also available on the Cyber Exchange public site at https://public.cyber.mil/stigs/downloads.
Users who are unable to find and download the guide or other content can report their issue to the Cyber Exchange web team at dod.cyberexchange@mail.mil. Individuals who have further questions related to STIG content should email the DISA STIG customer support desk at disa.stig_spt@mail.mil.
DISA releases the Dell OS10 Switch Security Technical Implementation Guide
The Defense Information Systems Agency recently approved the Dell OS10 Switch Security Technical Implementation Guide (STIG), which is effective immediately upon release.
Customers who possess a Common Access Card that has valid Department of Defense certificates can obtain the STIG from the DOD Cyber Exchange website at https://cyber.mil/stigs/downloads/. The STIG is also available on the Cyber Exchange public site at https://public.cyber.mil/stigs/downloads.
Users who are unable to find and download the guide or other content can report their issue to the Cyber Exchange web team at dod.cyberexchange@mail.mil. Individuals who have further questions related to STIG content should email the DISA STIG customer support desk at disa.stig_spt@mail.mil.
Request for comments - DISA releases draft Canonical Ubuntu 22.04 STIG SCAP benchmark snapshot for review
The Defense Information Systems Agency recently released the draft Canonical Ubuntu 22.04 Security Technical Implementation Guide (STIG) Security Content Automation Protocol (SCAP) benchmark snapshot for review.
The draft benchmark is a snapshot of SCAP content developed for the technology and does not include the full spectrum of content expected to be included in the final release of the benchmark.
Customers who possess a Common Access Card that has valid Department of Defense certificates can submit comments and/or recommended changes to the draft benchmark snapshot by 21 January 2025 on the comment matrix spreadsheet, which is located with the benchmark at https://cyber.mil/stigs/downloads/.
The draft benchmark snapshot and comment matrix are also available on the Cyber Exchange public site at https://public.cyber.mil/stigs/downloads.
Please limit comments and recommendations in the comment matrix to those that address the benchmark. Questions regarding the manual STIG should be sent to dod.cyberexchange@mail.mil.
Please email comments to disa.stig_spt@mail.mil and include the title and version of the benchmark in the subject line.
Users who are unable to find and download these files or other content can report their issue to the Cyber Exchange web team at dod.cyberexchange@mail.mil.
DISA releases the CloudLinux Alma Linux OS 9 Security Technical Implementation Guide
The Defense Information Systems Agency recently approved the CloudLinux Alma Linux OS 9 Security Technical Implementation Guide (STIG), which is effective immediately upon release.
Customers who possess a Common Access Card that has valid Department of Defense certificates can obtain the STIG from the DOD Cyber Exchange website at https://cyber.mil/stigs/downloads/. The STIG is also available on the Cyber Exchange public site at https://public.cyber.mil/stigs/downloads.
Users who are unable to find and download the guide or other content can report their issue to the Cyber Exchange web team at dod.cyberexchange@mail.mil. Individuals who have further questions related to STIG content should email the DISA STIG customer support desk at disa.stig_spt@mail.mil.
Request for comments - DISA releases the draft Microsoft Entra ID STIG for review
The Defense Information Systems Agency recently released the draft Microsoft Entra ID Security Technical Implementation Guide (STIG) for review.
Customers who possess a Common Access Card that has valid Department of Defense certificates can submit comments and/or recommended changes to the draft STIG by 12 December 2024 on the comment matrix spreadsheet, which is located with the STIG/SRG at https://cyber.mil/stigs/downloads/.
The draft STIG and comment matrix are also available on the Cyber Exchange public site at https://public.cyber.mil/stigs/downloads.
Please email comments to disa.stig_spt@mail.mil and include the title and version of the STIG in the subject line.
Users who are unable to find and download these files or other content can report their issue to the Cyber Exchange web team at dod.cyberexchange@mail.mil.
DISA releases the Anduril NixOS Security Technical Implementation Guide
The Defense Information Systems Agency recently approved the Anduril NixOS Security Technical Implementation Guide (STIG), which is effective immediately upon release.
Customers who possess a Common Access Card that has valid Department of Defense certificates can obtain the STIG from the DOD Cyber Exchange website at https://cyber.mil/stigs/downloads/. The STIG is also available on the Cyber Exchange public site at https://public.cyber.mil/stigs/downloads.
Users who are unable to find and download the guide or other content can report their issue to the Cyber Exchange web team at dod.cyberexchange@mail.mil. Individuals who have further questions related to STIG content should email the DISA STIG customer support desk at disa.stig_spt@mail.mil.
DISA releases the Samsung Android OS 15 with Knox 3.x Security Technical Implementation Guide
The Defense Information Systems Agency recently approved the Samsung Android OS 15 with Knox 3.x Security Technical Implementation Guide (STIG) which is effective immediately upon release.
Customers who possess a Common Access Card that has valid Department of Defense certificates can obtain the STIG from the DOD Cyber Exchange website at https://cyber.mil/stigs/downloads/. The STIG is also available on the Cyber Exchange public site at https://public.cyber.mil/stigs/downloads.
Users who are unable to find and download the guide or other content can report their issue to the Cyber Exchange web team at dod.cyberexchange@mail.mil. Individuals who have further questions related to STIG content should email the DISA STIG customer support desk at disa.stig_spt@mail.mil.
DISA releases the HPE Aruba Networking AOS Security Technical Implementation Guide
The Defense Information Systems Agency recently approved the HPE Aruba Networking AOS Security Technical Implementation Guide (STIG), which is effective immediately upon release.
Customers who possess a Common Access Card that has valid Department of Defense certificates can obtain the STIG from the DOD Cyber Exchange website at https://cyber.mil/stigs/downloads/. The STIG is also available on the Cyber Exchange public site at https://public.cyber.mil/stigs/downloads.
Users who are unable to find and download the guide or other content can report their issue to the Cyber Exchange web team at dod.cyberexchange@mail.mil. Individuals who have further questions related to STIG content should email the DISA STIG customer support desk at disa.stig_spt@mail.mil.
PKI/PKE Announcements
DoD Approved External PKI Certificate Trust Chains - Version 11.2
This zip file contains certificate trust chains for DoD Approved External PKIs. DoD Approved External PKI Certificate Trust Chains – Version 11.2
DoD Approved External PKIs Master Document - Version 11.2
This document provides Certification Authority (CA) certificate trust chain and assurance level information for all Department of Defense (DoD) approved Public Key Infrastructures (PKIs). DoD Approved External PKIs Master Document – Version 11.2
New ECA PKI CAs Released
New WCF CAs released
The WCF PKI has recently deployed updated WCF Signing CAs 1-10. These new certificates are now available in the WCF PKI PKCS#7 Certificate Bundle v5.15.