STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← SA-15 (5) — Development Process, Standards, and Tools

CCI-003272

Definition

Require the developer of the system, system component, or system service to reduce attack surfaces to organization-defined thresholds.

Parent Control

SA-15 (5)Development Process, Standards, and ToolsSystem and Services Acquisition

Linked STIG Checks (1)

V-222656CAT IIThe application must not be subject to error handling vulnerabilities.Application Security and Development Security Technical Implementation Guide