APPNET0070 – Software utilizing .Net 4.0 must be identified and relevant access controls configured.
Details With the advent of .Net 4.0, the .Net framework no longer directly configures or enforces security policy for .Net...
- Home
- Security Hardening
- DISA STIG For Microsoft Dot Net Framework 4.0 V2R1
DISA STIG For Microsoft Dot Net Framework 4.0 V2R1
APPNET0060 – Remoting Services HTTP channels must utilize authentication and encryption – applications
Details Note: Microsoft recommends using the Windows Communication Framework (WCF) rather than using .Net remoting. New development projects should refrain...APPNET0071 – Remoting Services TCP channels must utilize authentication and encryption – applications
Details Note: Microsoft recommends using the Windows Communication Framework (WCF) rather than .Net remoting. New development projects should refrain from...APPNET0060 – Remoting Services HTTP channels must utilize authentication and encryption – machine
Details Note: Microsoft recommends using the Windows Communication Framework (WCF) rather than using .Net remoting. New development projects should refrain...APPNET0071 – Remoting Services TCP channels must utilize authentication and encryption – machine
Details Note: Microsoft recommends using the Windows Communication Framework (WCF) rather than .Net remoting. New development projects should refrain from...APPNET0061 – .Net Framework versions installed on the system must be supported.
Details Unsupported software introduces risks and violates DoD policy. Applications utilizing unsupported versions of .NET introduce substantial risk to the...APPNET0062 – The .NET CLR must be configured to use FIPS approved encryption modules – applications
Details FIPS encryption is configured via .NET configuration files. There are numerous configuration files that affect different aspects of .Net...APPNET0062 – The .NET CLR must be configured to use FIPS approved encryption modules – machine
Details FIPS encryption is configured via .NET configuration files. There are numerous configuration files that affect different aspects of .Net...APPNET0063 – .NET must be configured to validate strong names on full-trust assemblies.
Details The ‘bypassTrustedAppStrongNames’ setting specifies whether the bypass feature that avoids validating strong names for full-trust assemblies is enabled. By...APPNET0063 – .NET must be configured to validate strong names on full-trust assemblies – Wow6432Node
Details The ‘bypassTrustedAppStrongNames’ setting specifies whether the bypass feature that avoids validating strong names for full-trust assemblies is enabled. By...