spk-logo-white-text-short2
0%
1-888-310-4540 (main) / 1-888-707-6150 (support) info@spkaa.com
Select Page

How to Conduct System Hardening Using the Defense Information Systems Agency’s (DISA) “Gold Disk”

Written by SPK Blog Post
Published on December 6, 2011

Holes in your IT infrastructure can make for some awkward situations. Whether you’re dealing with sensitive customer information, upcoming product designs, or simply just don’t want people messing with your stuff, maintaining system integrity can be difficult. Symantec is great, but what do you do when the integrity of your system directly relates to national security? Where do you turn when the boss says you gotta keep those centrifuges spinning or heads will roll?

The DoD has developed a process, called DIACAP, for certifying that an Information System (IS) is compliant with DoD security standards. DIACAP stands for DoD Information Assurance Certification and Accreditation Process and you can find additional information about it here and here.

The DISA (an agency within the DoD) has developed a tool, called “Gold Disk”, to help identify and mitigate security holes according to DIACAP standards. It scans your machine and produces a detailed outline of all the Category 1, 2, and 3 vulnerabilities it finds, depending on the applicable Mission Assurance Level. It even goes as far as to suggest the appropriate means of resolving the issue, point out relevant Microsoft Security Bulletins, and offer to fix things for you.

Keep reading for my step-by-step walk-through on how to use DISA’s “Gold Disk”, a handy tool!

David Hubbell
SPK Software Engineer

Latest White Papers

Accelerating Product Development the SPK Way

Accelerating Product Development the SPK Way

Developing high-quality products quickly can be a challenge without the proper tools, processes, and partners to help. Dive into this eBook to discover how partnering with SPK can help you achieve product development success.What You Will Learn In this eBook, we will...

Related Resources

A Review of Jira Product Discovery 2025

A Review of Jira Product Discovery 2025

Navigating customer feedback, feature requests, and market research is all in a day’s work for product teams.  Despite this familiar heavy load, teams have not had a truly purpose-built solution for capturing and organizing early-stage product discovery work. Instead,...

The Best Marketplace Apps for Jira and Confluence for 2025

The Best Marketplace Apps for Jira and Confluence for 2025

Atlassian’s suite of tools continue to be indispensable for teams managing work and collaborating across departments. Specifically, Jira and Confluence offer flexibility that is ideal for everything from agile development to content creation. However, as organizations...

Protected Container Repositories and more in the latest GitLab releases

Protected Container Repositories and more in the latest GitLab releases

GitLab has officially released version 17.8. This update offers significant enhancements across security, DevOps workflows, and machine learning capabilities. With over 60 improvements, this release further solidifies GitLab's role as the most comprehensive AI-powered...