Standards Group:
YALE-MSS-5: Software Security
YALE-MSS-5.3: Run supported hardware, software, and operating systems
Low Risk Endpoint
Required
Moderate Risk Endpoint
Required
High Risk Endpoint
Required
Low Risk Server
Required
Moderate Risk Server
Required
High Risk Server
Required
Low Risk Mobile Device
Required
Moderate Risk Mobile Device
Required
High Risk Mobile Device
Required
Low Risk Network Printer
Required
Moderate Risk Network Printer
Required
High Risk Network Printer
Required
Details
Supported hardware and software are components that continue to have security updates.
Support could come from a manufacturer (e.g., Apple, Microsoft) or an open-source project.
When hardware/software reaches the end of its lifecycle, technical support, bug fixes, and security patches also cease.
Implement a plan to replace software before it goes out of support. This may include replacing hardware to run supported software.
Manufacturers, vendors, and software projects normally provide advance notice of when their products will go out of support. These dates should be used to plan for upgrading or replacing components before they reach end-of-life.