The application must not be hosted on a general purpose machine if the application is designated as critical or high availability by the ISSO.

From Application Security and Development Security Technical Implementation Guide

Part of ASDV-PL-003040

Associated with: CCI-002828

SV-84971r1_rule The application must not be hosted on a general purpose machine if the application is designated as critical or high availability by the ISSO.

Vulnerability discussion

Critical applications should not be hosted on a multi-purpose server with other applications. Applications that share resources are susceptible to the other shared application security defects. Even if the critical application is designed and deployed securely, an application that is not designed and deployed securely, can cause resource issues and possibly crash effecting the critical application.

Check content

Ask the application representative to review the servers where the application is deployed. Ask what other applications are deployed on those servers. Identify the criticality of the applications installed on the system. If a mission critical application is deployed onto the same server as non-mission critical applications, this is a finding.

Fix text

Deploy mission critical applications on servers that are not shared by other less critical applications.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer