The VMM must authenticate peripherals before establishing a connection.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-207483	SRG-OS-000378-VMM-001540	SV-207483r958820_rule		Medium

Description

Without authenticating devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity. Peripherals include, but are not limited to, such devices as flash drives, external storage, and printers. This requirement is applicable to devices capable of authentication.

STIG	Date
Virtual Machine Manager Security Requirements Guide	2024-12-06

Details

Check Text (C-7740r365853_chk)

Verify the VMM authenticates peripherals before establishing a connection.

If it does not, this is a finding.

Fix Text (F-7740r365854_fix)

Configure the VMM to authenticate peripherals before establishing a connection.