Federal Desktop Core Configuration
From GovITwiki
Federal Desktop Core Configuration (FDCC) is a program that has been mandated by the Office of Management and Budget (OMB) to requires federal employees and staff to use specific security configuration for personal computers owned and operated by federal agencies.
GovITwiki offers a list of links to the most recent CVE cyber vulnerabilities published within the National Vulnerability Database. Configurations exist for
- Microsoft Windows Vista Enterprise
- Windows Professional XP (Service pack 2)
The origin of FDCC is from OMB Memorandum M-07-11 issued on 22 March 2007 and issued to all Federal agencies and department heads. Currently, this is limited to Windows XP and Windows Vista desktop images and is does not mean that an employee's operating system be Windows XP/Vista. OMB plans to issue further guidance on required security configurations for other desktop operating systems, such as UNIX and Linux. OMB officials have stated that a standard computer desktop configuration will dramatically improve government IT security Agencies wishing to deviate must apply for a waiver.
Vendor products must not alter the standard configuration, and software and hardware products must operate as intended within the federal secure configuration. Agencies must verify that products they use meet this requirement.
Security Content Automation Protocol (SCAP)
Related links
- More details can be found at the NIST Federal Desktop Core Configuration page.
- See the full range of presentations from the 2008 Federal Desktop Core Configuration Implementers Workshop. There is a huge amount of information here for anyone working to gain FDCC compliance for their agency PCs.
- Some information related to FDCC can be found at the NIST-coordinated 2007 Security Automation Conference.
- Other system security information can be found at in the presentations from the 2006 Security Automation Conference & Workshop.
- Learn more about the NIST Security Content Automation Protocol
