Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-69409 | APSC-DV-000850 | SV-84031r1_rule | Medium |
Description |
---|
Knowing when a user’s application session began and when it ended is critical information that aids in forensic analysis. |
STIG | Date |
---|---|
Application Security and Development Security Technical Implementation Guide | 2018-04-03 |
Check Text ( C-69827r1_chk ) |
---|
Review and monitor the application logs. Initiate a user session and observe if the log includes a time stamp showing the start of the session. Terminate the user session and observe if the log includes a time stamp showing the end of the session. If the start and the end time of the session are not recorded in the logs, this is a finding. |
Fix Text (F-75585r1_fix) |
---|
Configure the application or application server to record the start and end time of user session activity. |