Tag Archives: disa

IBM DB2 V10.5 LUW STIG Version 1

STIG Update – IBM DB2 V10.5 LUW STIG Version 1
DISA has released the IBM DB2 V10.5 LUW STIG Version 1. The requirements of the STIG become effective immediately.

The STIG is available on IASE at http://iase.disa.mil/stigs/app-security/database/Pages/index.aspx

For all STIG related questions, please contact the DISA STIG Customer Support Desk: disa.stig_spt@mail.mil

Backbone Transport Services (BTS) Policy STIG Version 3 and Microsoft Windows Privileged Access Workstation (PAW) STIG Version 1

STIG Update – Backbone Transport Services (BTS) Policy STIG Version 3 and Microsoft Windows Privileged Access Workstation (PAW) STIG Version 1
DISA has released the BTS Policy Security Technical Implementation Guide (STIG) Version 3. The requirements of the STIG become effective immediately. The STIG is available at https://iase.disa.mil/stigs/Pages/index.aspx.

DISA Risk Management Executive has released the Microsoft Windows Privileged Access Workstation (PAW) STIG Version 1. The requirements of the STIG become effective immediately. The STIG is available at https://iase.disa.mil/stigs/Pages/index.aspx.

For all STIG related questions, please contact the DISA STIG Customer Support Desk: disa.stig_spt@mail.mil

AndroidForWork knox samsung stig

DISA has released the Samsung Android OS 7 (with Knox 2.x) STIG Version 1

STIG Update – DISA has released the Samsung Android OS 7 (with Knox 2.x) STIG Version 1
DISA has released the Samsung Android OS 7 (with Knox 2.x) STIG Version 1. The requirements of the STIG become effective immediately. The STIG is available at https://iase.disa.mil/stigs/mobility/Pages/index.aspx.

For all STIG related questions, please contact the DISA STIG Customer Support Desk: disa.stig_spt@mail.mil

Microsoft Windows Defender Antivirus STIG V1R2

STIG Update – Microsoft Windows Defender Antivirus STIG V1R2
DISA Risk Management Executive has updated the Microsoft Windows Defender Antivirus Security Technical Implementation Guide (STIG) Version 1 Release 2. The requirements of the STIG become effective immediately. The STIG is available on IASE at https://iase.disa.mil/stigs/app-security/antivirus/Pages/index.aspx.

For all STIG related questions, please contact the DISA STIG Customer Support Desk: disa.stig_spt@mail.mil

DISA will no longer support the following Security Guidance

STIG Update – DISA will no longer support the following Security Guidance


The following STIGs are no longer supported as of 27 Oct 2017 and have been removed from their existing page. They now can be found at: https://iase.disa.mil/stigs/sunset/Pages/index.aspx:

BlackBerry for the OS 7 STIG – Ver 2, Rel 11
Good for Enterprise 8.x STIG – Ver 1, Rel 2
Microsoft Access 2007 STIG – Ver 4, Rel 15
Microsoft Excel 2007 STIG – Ver 4, Rel 13
Microsoft Infopath 2007 STIG – Ver 4, Rel 13
Microsoft Office System 2007 STIG – Ver 4, Rel 16
Microsoft Outlook 2007 STIG – Ver 4, Rel 16
Microsoft PowerPoint 2007 STIG – Ver 4, Rel 16
Microsoft Word 2007 STIG – Ver 4, Rel 15

STIG Update – Quarterly release: SRG-STIG_Library.zip

STIG Update – Quarterly release: SRG-STIG_Library.zip


DISA has released updates to the SRG/STIG Library Compilations in .ZIP format to correspond with the latest quarterly SRG/STIG update cycle. This release also includes newly released SRGs and STIGs published since the last quarterly release of the SRG/STIG Library Compilations.

The SRG/STIG_Library.zip is a compilation of DoD Security Requirements Guides (SRGs), DoD Security Technical Implementation Guides (STIGs) (provided in XCCDF or .pdf format), Checklists, Security Readiness Review (SRR) Tools that are available through the IASE web site’s STIG pages.

Two versions of the compilation are produced, an FOUO version and a NON-FOUO version entitled U_SRG-STIG_Library.zip and FOUO _SRG-STIG_Library.zip.  The file name preceded by FOUO_ contains STIGs and related content that has been designated as FOUO. As such a DoD PKI certificate is required to download it. The file name preceded by U_ is the NON-FOUO version which does not contain FOUO. It is therefore downloadable by the general public. These compilations may be used and distributed in the same manner as the individually downloaded documents. The FOUO compilation as a whole and any separated FOUO content must be handled in accordance with customary FOUO handling and dissemination guidelines.

Please see “SRG/STIG Library Compilation READ ME” for additional information to include download / extraction instructions and a FAQ.

All related files are available on IASE at: https://iase.disa.mil/stigs/compilations/Pages/index.aspx.