Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-32437 | SRG-APP-000146-DB-000100 | SV-42774r1_rule | Medium |
Description |
---|
Information system backup is a critical step in maintaining data assurance and availability. System-level information includes: system-state information, operating system and application software, and licenses. Backups shall be consistent with organizational recovery time and recovery point objectives. The DBMS application depends upon the availability and integrity of its software libraries. Without backups, compromise or loss of the software libraries can prevent a successful recovery of DBMS operations. |
STIG | Date |
---|---|
Database Security Requirements Guide | 2012-07-02 |
Check Text ( C-40879r1_chk ) |
---|
Review evidence of inclusion of the DBMS libraries in current backup records. If any DBMS library files are not included in regular backups, this is a finding. |
Fix Text (F-36352r1_fix) |
---|
Configure backups to include all DBMS application and third-party database application software libraries. |