|CP-10 (1) Contingency Plan Testing || |
Withdrawn: Incorporated into CP-4.
|CP-10 (2) Transaction Recovery ||MODERATE |
Transaction-based information systems include, for example, database management systems and transaction processing systems. Mechanisms supporting transaction recovery include, for example, transaction rollback and transaction journaling.
The information system implements transaction recovery for systems that are transaction-based.
|CP-10 (3) Compensating Security Controls || |
Withdrawn: Addressed through tailoring procedures.
|CP-10 (4) Restore Within Time Period ||HIGH |
Restoration of information system components includes, for example, reimaging which restores components to known, operational states.
The organization provides the capability to restore information system components within Assignment: organization-defined restoration time-periods from configuration-controlled and integrity-protected information representing a known, operational state for the components.
|CP-10 (5) Failover Capability || |
Withdrawn: Incorporated into SI-13.
|CP-10 (6) Component Protection || |
Protection of backup and restoration hardware, firmware, and software components includes both physical and technical safeguards. Backup and restoration software includes, for example, router tables, compilers, and other security-relevant system software.
The organization protects backup and restoration hardware, firmware, and software.