STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 4 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← All Controls

CM-7 (5)

Configuration ManagementRev 5

Least Functionality

CCI Identifiers (7)

CCI-001772Defines the software programs authorized to execute on the system.CCI-001773Identify the organization-defined software programs authorized to execute on the system.CCI-001774Employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs on the system.CCI-001775Defines the frequency on which the list of authorized software programs will be reviewed and updated.CCI-001776The organization defines the frequency on which it will update the list of authorized software programs.deprecated CCI-001777Review and update the list of authorized software programs per organization-defined frequency.CCI-001778The organization updates the list of authorized software programs per organization-defined frequency.deprecated

Linked STIG Checks (125)

Across 44 STIGs. Click to expand.