STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 4 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← All Controls

CM-7 (2)

Configuration ManagementRev 3

Least Functionality

CCI Identifiers (9)

CCI-000386The organization employs automated mechanisms to prevent program execution on the information system in accordance with the organization-defined specifications.CCI-001590The organization develops a list of software programs authorized to execute on the information system.deprecated CCI-001591The organization develops a list of software programs not authorized to execute on the information system.deprecated CCI-001592Defines the rules authorizing the terms and conditions of software program usage on the system.CCI-001593The organization maintains a list of software programs authorized to execute on the information system.deprecated CCI-001594The organization maintains a list of software programs not authorized to execute on the information system.deprecated CCI-001595The organization maintains rules authorizing the terms and conditions of software program usage on the information system.CCI-001763Defines the policies regarding software program usage and restrictions.CCI-001764Prevent program execution in accordance with organization-defined policies, rules of behavior, and/or access agreements regarding software program usage and restrictions; rules authorizing the terms and conditions of software program usage.

Linked STIG Checks (200)

Across 50 STIGs. Click to expand.