In the event of a system failure of the ALG function, the ALG must preserve any information necessary to determine the cause of failure and any information necessary to return to operations with the least disruption to mission processes.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000236-ALG-000119 | SRG-NET-000236-ALG-000119 | SRG-NET-000236-ALG-000119_rule | Medium |
| Description |
|---|
| Failure in a known state can address safety or security in accordance with the mission needs of the organization. Failure to a known secure state helps prevent a loss of confidentiality, integrity, or availability in the event of a failure of the information system or a component of the system. Preserving network element state information helps to facilitate network element restart and return to the operational mode of the organization with less disruption to mission-essential processes. This requirement applies to a failure of the ALG function rather than the device or operating system as a whole which is addressed in the Network Device Management SRG. |
| STIG | Date |
|---|---|
| Application Layer Gateway Security Requirements Guide | 2014-06-27 |
Details
| Check Text ( C-SRG-NET-000236-ALG-000119_chk ) |
|---|
| Verify the ALG, in the event of a system failure, preserves any information necessary to determine the cause of failure and any information necessary to return to operations with the least disruption to mission processes. If the ALG does not preserve any information necessary to determine the cause of the failure and any information necessary to return to operations with the least disruption to mission processes, this is a finding. |
| Fix Text (F-SRG-NET-000236-ALG-000119_fix) |
|---|
| Configure the ALG, in the event of a system failure, to preserve any information necessary to determine the cause of failure and any information necessary to return to operations with the least disruption to mission processes. |