Remote access into the test and development environment must originate from a non-DoD operational network segment.

From Test and Development Zone D Security Technical Implementation Guide

Part of ENTD0310 - Remote access originates from DoD operational networks.

Associated with IA controls: ECSC-1

SV-51537r1_rule Remote access into the test and development environment must originate from a non-DoD operational network segment.

Vulnerability discussion

If remote access is needed to access the test and development environment, it must be originated from a non-DoD operational network segment. Examples of this are a virtual machine located on government-furnished equipment used for operational tasks, or a separate physical machine sitting in a separate network segment or VLAN. Keeping direct access off the DoD operational network will reduce the risk of test and development data being leaked, potentially damaging or compromising live data.

Check content

Determine whether remote access to the test and development environment from any DoD operational network segment has been prohibited. If no procedures exist to prohibit remote access to the test and development environment from any DoD operational network, this is a finding.

Fix text

Prohibit remote access from DoD operational networks.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer