STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 2 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← SI-10 (3) — Information Input Validation

CCI-002754

Definition

Verify that the system behaves in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.

Parent Control

SI-10 (3)Information Input ValidationSystem and Information Integrity

Linked STIG Checks (43)

V-279050CAT IIColdFusion must be configured with secure and approved server settings to enforce application hardening, input validation, error handling, and protection against common web vulnerabilities.Adobe ColdFusion Security Technical Implementation Guide V-205011CAT IIThe ALG must behave in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.Application Layer Gateway Security Requirements Guide V-274714CAT IIThe API must use parameterized queries.Application Programming Interface (API) Security Requirements Guide V-274715CAT IIThe API must provide input validation.Application Programming Interface (API) Security Requirements Guide V-222609CAT IThe application must not be subject to input handling vulnerabilities.Application Security and Development Security Technical Implementation Guide V-204821CAT IIThe application server must behave in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.Application Server Security Requirements Guide V-237402CAT IIThe CA API Gateway must behave in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.CA API Gateway ALG Security Technical Implementation Guide V-251649CAT IIIDMS must check for invalid data and behave in a predictable manner when encountered.CA IDMS Security Technical Implementation Guide V-233228CAT IIThe container platform must behave in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.Container Platform Security Requirements Guide V-233544CAT IIWhen invalid inputs are received, PostgreSQL must behave in a predictable and documented manner that reflects organizational and system objectives.Crunchy Data PostgreSQL Security Technical Implementation Guide V-261934CAT IIWhen invalid inputs are received, PostgreSQL must behave in a predictable and documented manner that reflects organizational and system objectives.Crunchy Data Postgres 16 Security Technical Implementation Guide V-206609CAT IIWhen invalid inputs are received, the DBMS must behave in a predictable and documented manner that reflects organizational and system objectives.Database Security Requirements Guide V-235778CAT IIThe audit log configuration level must be set to request in the Universal Control Plane (UCP) component of Docker Enterprise.Docker Enterprise 2.x Linux/UNIX Security Technical Implementation Guide V-235779CAT IIThe host operating systems auditing policies for the Docker Engine - Enterprise component of Docker Enterprise must be set.Docker Enterprise 2.x Linux/UNIX Security Technical Implementation Guide V-205220CAT IIThe DNS server implementation must behave in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.Domain Name System (DNS) Security Requirements Guide V-224210CAT IIWhen invalid inputs are received, the EDB Postgres Advanced Server must behave in a predictable and documented manner that reflects organizational and system objectives.EDB Postgres Advanced Server v11 on Windows Security Technical Implementation Guide V-213635CAT IIWhen invalid inputs are received, the EDB Postgres Advanced Server must behave in a predictable and documented manner that reflects organizational and system objectives.EDB Postgres Advanced Server v9.6 Security Technical Implementation Guide V-259294CAT IIWhen invalid inputs are received, the EDB Postgres Advanced Server must behave in a predictable and documented manner that reflects organizational and system objectives.EnterpriseDB Postgres Advanced Server (EPAS) Security Technical Implementation Guide V-215736CAT IIThe BIG-IP APM module must be configured to handle invalid inputs in a predictable and documented manner that reflects organizational and system objectives.F5 BIG-IP Access Policy Manager Security Technical Implementation Guide V-214502CAT IIThe BIG-IP AFM module must be configured to handle invalid inputs in a predictable and documented manner that reflects organizational and system objectives.F5 BIG-IP Advanced Firewall Manager Security Technical Implementation Guide V-214514CAT IIThe BIG-IP ASM module must be configured to handle invalid inputs in a predictable and documented manner that reflects organizational and system objectives.F5 BIG-IP Application Security Manager Security Technical Implementation Guide V-215795CAT IIThe BIG-IP Core implementation must be configured to handle invalid inputs in a predictable and documented manner that reflects organizational and system objectives.F5 BIG-IP Local Traffic Manager Security Technical Implementation Guide V-203752CAT IIThe operating system must behave in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.General Purpose Operating System Security Requirements Guide V-213733CAT IIWhen invalid inputs are received, DB2 must behave in a predictable and documented manner that reflects organizational and system objectives.IBM DB2 V10.5 LUW Security Technical Implementation Guide V-65281CAT IIThe DataPower Gateway must behave in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.IBM DataPower ALG Security Technical Implementation Guide V-213789CAT IIWhen invalid inputs are received, SQL Server must behave in a predictable and documented manner that reflects organizational and system objectives.MS SQL Server 2014 Database Security Technical Implementation Guide V-205587CAT IIThe Mainframe Product must behave in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.Mainframe Product Security Requirements Guide V-253743CAT IIWhen invalid inputs are received, MariaDB must behave in a predictable and documented manner that reflects organizational and system objectives.MariaDB Enterprise 10.x Security Technical Implementation Guide V-255323CAT IIWhen invalid inputs are received, the Azure SQL Database must behave in a predictable and documented manner that reflects organizational and system objectives.Microsoft Azure SQL Database Security Technical Implementation Guide V-276239CAT IIWhen invalid inputs are received, the Azure SQL Managed Instance must behave in a predictable and documented manner that reflects organizational and system objectives.Microsoft Azure SQL Managed Instance Security Technical Implementation Guide V-271362CAT IIWhen invalid inputs are received, the SQL Server must behave in a predictable and documented manner that reflects organizational and system objectives.Microsoft SQL Server 2022 Instance Security Technical Implementation Guide V-215639CAT IIThe Windows 2012 DNS Server must follow procedures to re-role a secondary name server as the master name server should the master name server permanently lose functionality.Microsoft Windows 2012 Server Domain Name System Security Technical Implementation Guide V-221199CAT IIWhen invalid inputs are received, MongoDB must behave in a predictable and documented manner that reflects organizational and system objectives.MongoDB Enterprise Advanced 3.x Security Technical Implementation Guide V-252181CAT IIWhen invalid inputs are received, MongoDB must behave in a predictable and documented manner that reflects organizational and system objectives.MongoDB Enterprise Advanced 4.x Security Technical Implementation Guide V-265950CAT IIWhen invalid inputs are received, MongoDB must behave in a predictable and documented manner that reflects organizational and system objectives.MongoDB Enterprise Advanced 7.x Security Technical Implementation Guide V-279390CAT IIWhen invalid inputs are received, MongoDB must behave in a predictable and documented manner that reflects organizational and system objectives.MongoDB Enterprise Advanced 8.x Security Technical Implementation Guide V-235195CAT IIWhen invalid inputs are received, the MySQL Database Server 8.0 must behave in a predictable and documented manner that reflects organizational and system objectives.Oracle MySQL 8.0 Security Technical Implementation Guide V-253529CAT IThe configuration integrity of the container platform must be ensured and runtime policies must be configured.Palo Alto Networks Prisma Cloud Compute Security Technical Implementation Guide V-214079CAT IIWhen invalid inputs are received, PostgreSQL must behave in a predictable and documented manner that reflects organizational and system objectives.PostgreSQL 9.x Security Technical Implementation Guide V-234596CAT IIThe UEM server must be configured to write to the server event log when invalid inputs are received.Unified Endpoint Management Server Security Requirements Guide V-240310CAT IIvRA PostgreSQL database must be configured to validate character encoding to UTF-8.VMW vRealize Automation 7.x PostgreSQL Security Technical Implementation Guide V-239811CAT IIWhen invalid inputs are received, the vROps PostgreSQL DB must behave in a predictable and documented manner that reflects organizational and system objectives.VMW vRealize Operations Manager 6.x PostgreSQL Security Technical Implementation Guide V-207502CAT IIThe VMM must behave in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.Virtual Machine Manager Security Requirements Guide