DISA STIG Oracle JRE 8 Windows v2r1

Audit Details

Name: DISA STIG Oracle JRE 8 Windows v2r1

Updated: 4/25/2022

Authority: DISA STIG

Plugin: Windows

Revision: 1.1

Estimated Item Count: 26

File Details

Filename: DISA_STIG_JRE_8_Windows_v2r1.audit

Size: 49.1 kB

MD5: 74e151f512d73f623321925a982b01c7
SHA256: 55357c929fd72f09ffeb0c7fd6a0b28c369e0f9e1f47122d270bbd8157f5fb0a

Audit Items

DescriptionCategories
JRE8-WN-000010 - Oracle JRE 8 must have a deployment.config file present.

CONFIGURATION MANAGEMENT

JRE8-WN-000020 - Oracle JRE 8 deployment.config file must contain proper keys and values - deployment.system.config

CONFIGURATION MANAGEMENT

JRE8-WN-000020 - Oracle JRE 8 deployment.config file must contain proper keys and values - deployment.system.config.mandatory

CONFIGURATION MANAGEMENT

JRE8-WN-000030 - Oracle JRE 8 must have a deployment.properties file present.

CONFIGURATION MANAGEMENT

JRE8-WN-000060 - Oracle JRE 8 must default to the most secure built-in setting - deployment.security.level

CONFIGURATION MANAGEMENT

JRE8-WN-000060 - Oracle JRE 8 must default to the most secure built-in setting - deployment.security.level.locked

CONFIGURATION MANAGEMENT

JRE8-WN-000070 - Oracle JRE 8 must be set to allow Java Web Start (JWS) applications - deployment.webjava.enabled

CONFIGURATION MANAGEMENT

JRE8-WN-000070 - Oracle JRE 8 must be set to allow Java Web Start (JWS) applications - deployment.webjava.enabled.locked

CONFIGURATION MANAGEMENT

JRE8-WN-000080 - Oracle JRE 8 must disable the dialog enabling users to grant permissions to execute signed content from an untrusted authority - deployment.security.askgrantdialog.notinca

SYSTEM AND COMMUNICATIONS PROTECTION

JRE8-WN-000080 - Oracle JRE 8 must disable the dialog enabling users to grant permissions to execute signed content from an untrusted authority - deployment.security.askgrantdialog.notinca.locked

SYSTEM AND COMMUNICATIONS PROTECTION

JRE8-WN-000090 - Oracle JRE 8 must lock the dialog enabling users to grant permissions to execute signed content from an untrusted authority - deployment.security.askgrantdialog.show

SYSTEM AND COMMUNICATIONS PROTECTION

JRE8-WN-000090 - Oracle JRE 8 must lock the dialog enabling users to grant permissions to execute signed content from an untrusted authority - deployment.security.askgrantdialog.show.locked

SYSTEM AND COMMUNICATIONS PROTECTION

JRE8-WN-000100 - Oracle JRE 8 must set the option to enable online certificate validation - deployment.security.validation.ocsp

IDENTIFICATION AND AUTHENTICATION

JRE8-WN-000100 - Oracle JRE 8 must set the option to enable online certificate validation - deployment.security.validation.ocsp.locked

IDENTIFICATION AND AUTHENTICATION

JRE8-WN-000110 - Oracle JRE 8 must prevent the download of prohibited mobile code - deployment.security.blacklist.check

SYSTEM AND COMMUNICATIONS PROTECTION

JRE8-WN-000110 - Oracle JRE 8 must prevent the download of prohibited mobile code - deployment.security.blacklist.check.locked

SYSTEM AND COMMUNICATIONS PROTECTION

JRE8-WN-000120 - Oracle JRE 8 must enable the option to use an accepted sites list.

CONFIGURATION MANAGEMENT

JRE8-WN-000130 - Oracle JRE 8 must have an exception.sites file present.

CONFIGURATION MANAGEMENT

JRE8-WN-000150 - Oracle JRE 8 must enable the dialog to enable users to check publisher certificates for revocation - deployment.security.validation.crl

IDENTIFICATION AND AUTHENTICATION

JRE8-WN-000150 - Oracle JRE 8 must enable the dialog to enable users to check publisher certificates for revocation - deployment.security.validation.crl.locked

IDENTIFICATION AND AUTHENTICATION

JRE8-WN-000160 - Oracle JRE 8 must lock the option to enable users to check publisher certificates for revocation - deployment.security.revocation.check

IDENTIFICATION AND AUTHENTICATION

JRE8-WN-000160 - Oracle JRE 8 must lock the option to enable users to check publisher certificates for revocation - eployment.security.revocation.check.locked

IDENTIFICATION AND AUTHENTICATION

JRE8-WN-000170 - Oracle JRE 8 must prompt the user for action prior to executing mobile code - deployment.insecure.jres

SYSTEM AND COMMUNICATIONS PROTECTION

JRE8-WN-000170 - Oracle JRE 8 must prompt the user for action prior to executing mobile code - deployment.insecure.jres.locked

SYSTEM AND COMMUNICATIONS PROTECTION

JRE8-WN-000180 - The version of Oracle JRE 8 running on the system must be the most current available.

SYSTEM AND INFORMATION INTEGRITY

JRE8-WN-000190 - Oracle JRE 8 must remove previous versions when the latest version is installed.

SYSTEM AND INFORMATION INTEGRITY