In the event of a system failure of the ALG function, the ALG must preserve any information necessary to determine the cause of failure and any information necessary to return to operations with the least disruption to mission processes.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000236-ALG-000119	SRG-NET-000236-ALG-000119	SRG-NET-000236-ALG-000119_rule		Medium

Description
Failure in a known state can address safety or security in accordance with the mission needs of the organization. Failure to a known secure state helps prevent a loss of confidentiality, integrity, or availability in the event of a failure of the information system or a component of the system. Preserving network element state information helps to facilitate network element restart and return to the operational mode of the organization with less disruption to mission-essential processes. This requirement applies to a failure of the ALG function rather than the device or operating system as a whole which is addressed in the Network Device Management SRG.

Description

Failure in a known state can address safety or security in accordance with the mission needs of the organization. Failure to a known secure state helps prevent a loss of confidentiality, integrity, or availability in the event of a failure of the information system or a component of the system. Preserving network element state information helps to facilitate network element restart and return to the operational mode of the organization with less disruption to mission-essential processes. This requirement applies to a failure of the ALG function rather than the device or operating system as a whole which is addressed in the Network Device Management SRG.

STIG	Date
Application Layer Gateway Security Requirements Guide	2014-06-27

Details

Check Text ( C-SRG-NET-000236-ALG-000119_chk )
Verify the ALG, in the event of a system failure, preserves any information necessary to determine the cause of failure and any information necessary to return to operations with the least disruption to mission processes. If the ALG does not preserve any information necessary to determine the cause of the failure and any information necessary to return to operations with the least disruption to mission processes, this is a finding.

Check Text ( C-SRG-NET-000236-ALG-000119_chk )

Verify the ALG, in the event of a system failure, preserves any information necessary to determine the cause of failure and any information necessary to return to operations with the least disruption to mission processes.

If the ALG does not preserve any information necessary to determine the cause of the failure and any information necessary to return to operations with the least disruption to mission processes, this is a finding.

Fix Text (F-SRG-NET-000236-ALG-000119_fix)
Configure the ALG, in the event of a system failure, to preserve any information necessary to determine the cause of failure and any information necessary to return to operations with the least disruption to mission processes.