The operating system must fail to a secure state if system initialization fails, shutdown fails, or aborts fail.

STIG ID: SRG-OS-000184-GPOS-00078  |  SRG: SRG-OS-000184 |  Severity: medium |  CCI: CCI-001190 |  Vulnerability Id: V-203660 | 

Vulnerability Discussion

Failure to a known safe state helps prevent systems from failing to a state that may cause loss of data or unauthorized access to system resources. Operating systems that fail suddenly and with no incorporated failure state planning may leave the system available but with a reduced security protection capability. Preserving operating system state information also facilitates system restart and return to the operational mode of the organization with less disruption to mission-essential processes.

Abort refers to stopping a program or function before it has finished naturally. The term abort refers to both requested and unexpected terminations.

Check

Verify the operating system fails to a secure state if system initialization fails, shutdown fails, or aborts fail. If it does not, this is a finding.

Fix

Configure the operating system to fail to a secure state if system initialization fails, shutdown fails, or aborts fail.
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.