Applications required to be non-modifiable must support organizational requirements to provide components that contain no writeable storage capability. These components must be persistent across restart and/or power on/off.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-32544	SRG-APP-000240-DB-NA	SV-42881r1_rule		Medium

Description
Organizations may require applications or application components to be non-modifiable or to be stored and executed on non-writeable storage. Use of non-modifiable storage ensures the integrity of the software program from the point of creation of the read-only image and eliminates the possibility of malicious code insertion. This requirement is specific to applications that are required to be stored and executed on read only media. This requirement is NA for databases.

Description

Organizations may require applications or application components to be non-modifiable or to be stored and executed on non-writeable storage. Use of non-modifiable storage ensures the integrity of the software program from the point of creation of the read-only image and eliminates the possibility of malicious code insertion. This requirement is specific to applications that are required to be stored and executed on read only media. This requirement is NA for databases.

STIG	Date
Database Security Requirements Guide	2012-07-02

Details

Check Text ( C-40982r1_chk )
This check is NA for databases.

Fix Text (F-36458r1_fix)
This fix is NA for databases.