Free DISA STIG and SRG Library | Vaulted

V-22301

The system must display a publicly-viewable pattern during a graphical desktop environment session lock.

Finding ID
GEN000510
Rule ID
SV-38275r1_rule
Severity
Cat III
CCE
(None)
Group Title
GEN000510
CCI
CCI-000061
Target Key
(None)
Documentable
No
Discussion

To protect the on-screen content of a session, it must be replaced with a publicly-viewable pattern upon session lock. Examples of publicly viewable patterns include screen saver patterns, photographic images, solid colors, or a blank screen, so long as none of those patterns convey sensitive information. This requirement applies to graphical desktop environments provided by the system to locally attached displays and input devices, as well as, to graphical desktop environments provided to remote systems using remote access protocols.

Fix Text

Configure the system to display a publicly-viewable pattern during a session lock.

Check Content

NOTE: This will virtually always be a manual review. Determine if a publicly-viewable pattern is displayed during a session lock. If the session lock pattern is not publicly-viewable, this is a finding.

Responsibility

System Administrator

IA Controls

PESL-1