Overall OCA Score
USNS MONTFORD POINT (T-ESD-1)
Overall Assessment
Minor Concern
Combined Weighted Score: 8.8%
ACAS Vulnerability Scan
Minor Concern
1.59 VPH
(23 hosts)
18
Assessment Areas
8 / 0
Mapped Areas / Unmapped Hostnames
CAT I (Weight: 10)
40 / 431
Open / Total
9.3%
open rate
CAT II (Weight: 4)
377 / 4589
Open / Total
8.2%
open rate
CAT III (Weight: 1)
18 / 274
Open / Total
6.6%
open rate
Percentages shown in score cards are open rates (`Open / Total`). Closed/compliance rate is `100% - open rate`.
Assessment Area Breakdown
Scores by OCA assessment area
| Assessment Area | Hosts | CAT I | CAT II | CAT III | Weighted Score | Concern Level |
|---|---|---|---|---|---|---|
|
Boundary Security
Firewalls, DMZ, perimeter security
|
- |
-
|
-
|
-
|
- | N/A |
|
Internal Network
MONTPOINTGTWYRTR
|
1 |
5/8
62%
|
6/34
18%
|
0/0
0%
|
46.4% | No Downgrade |
|
Combined Vulnerability Scan
_nessus_
|
1 |
27
1.17 VPH
|
63
2.74 VPH
|
25
1.09 VPH
|
1.59 VPH | Minor Concern |
|
Domain Name System
MONT-DC-003
|
1 |
3/13
23%
|
21/108
19%
|
0/5
0%
|
20.6% | Critical Concern |
|
Host Based Security System
HBSS/Trellix endpoint security
|
- |
-
|
-
|
-
|
- | N/A |
|
Traditional Security
Physical security, access control
|
- |
-
|
-
|
-
|
- | N/A |
|
Wireless Communications/Mobility
WiFi, mobile devices
|
- |
-
|
-
|
-
|
- | N/A |
|
Cross Domain Solutions - Admin
CDS administrative controls
|
- |
-
|
-
|
-
|
- | N/A |
|
Cross Domain Solutions - Technical
CDS technical implementation
|
- |
-
|
-
|
-
|
- | N/A |
|
Exchange
MONT-MB-002
|
1 |
0/1
0%
|
19/47
40%
|
7/16
44%
|
13.7% | Moderate Concern |
|
Web Server
MONT-DP-001, MONT-MB-002
|
2 |
5/14
36%
|
61/195
31%
|
3/6
50%
|
35.5% | No Downgrade |
|
Database
MONT-BE-002, MONT-DB-002
|
2 |
0/34
0%
|
0/208
0%
|
0/15
0%
|
0.0% | No Concern |
|
Video and Voice Over Internet Protocol (VVOIP)
VoIP phones, video conferencing
|
- |
-
|
-
|
-
|
- | N/A |
|
Windows OS
MONT-AP-002, MONT-BE-002, MONT-DB-002, MONT-DC-003,...
|
10 |
27/356
8%
|
270/3977
7%
|
8/232
3%
|
7.1% | Minor Concern |
|
Unix OS
Linux, Unix, macOS systems
|
- |
-
|
-
|
-
|
- | N/A |
|
Releaseable Networks
Networks for coalition/external use
|
- |
-
|
-
|
-
|
- | N/A |
|
Virtual Environment
VMware, Hyper-V, containers
|
- |
-
|
-
|
-
|
- | N/A |
|
Other Review
MONT-BE-002
|
1 |
0/5
0%
|
0/20
0%
|
0/0
0%
|
0.0% | No Concern |
Concern Level Thresholds
ACAS Vulnerability Scans (VPH)
No Downgrade
≥ 4.5 VPH
Critical
≥ 3.5 VPH
Moderate
≥ 2.5 VPH
Minor
> 0 VPH
Minimal
0 CAT I, < 1.25 VPH
No Concern
0 VPH
VPH = Open Findings / Hosts Scanned. Combined = (CAT I VPH × 10 + CAT II VPH × 4 + CAT III VPH × 1) / 15
STIG Checklists (Open Rate)
No Downgrade
≥ 30%
Critical
≥ 20%
Moderate
≥ 10%
Minor
> 0%
Minimal
0 CAT I, < 5%
No Concern
0%
Weighted score = (CAT I % × 10 + CAT II % × 4 + CAT III % × 1) / 15
CAT percentages in STIG areas are open-rate percentages (`Open / Total`), not inverse percentages.