UCF STIG Viewer Logo

Applications performing extrusion detection must be capable of denying network traffic and auditing internal users (or malicious code) posing a threat to external information systems.


Overview

Finding ID Version Rule ID IA Controls Severity
V-32563 SRG-APP-000259-DB-NA SV-42900r1_rule Medium
Description
Detecting internal actions that may pose a security threat to external information systems is sometimes termed extrusion detection. Extrusion detection at the information system boundary includes the analysis of network traffic (incoming as well as, outgoing) looking for indications of an internal threat to the security of external systems. This requirement applies to applications that perform extrusion detection. This requirement is NA for databases.
STIG Date
Database Security Requirements Guide 2012-07-02

Details

Check Text ( C-41002r1_chk )
This check is NA for databases.
Fix Text (F-36478r1_fix)
This fix is NA for databases.