The Apple macOS 12 Security Technical Implementation Guide (STIG) provides security policy and configuration requirements for the use of Apple macOS 12 in the Department of Defense (DoD). Guidance in these documents applies only to Apple macOS 12 and related components on DoD systems and excludes any other components or software running on DoD systems. The Apple macOS 12 STIG is accompanied by supplemental guidance that should be referenced when attempting to implement the Smart Card Policy requirements listed in the STIG. Failure to reference this guidance could result in a total loss of access to the operating system. The Apple macOS 12 STIG presumes operation in an environment compliant with all applicable DoD guidance, especially concerning remote access and network infrastructure.
2.1 Malware Protection
macOS includes built-in protections against malware. Gatekeeper ensures that by default, only trusted software runs on the system. XProtect is a built-in, signature-based antivirus tool that helps protect macOS from malware infections. XProtect definition files are updated by Apple automatically, independent of OS updates. Malware Removal Tool is an engine used to remediate infections should one find its way onto the system. The Malware Removal Tool is updated by Apple on systems configured to receive automatic security updates. More information about these built-in tools can be found at the following links: