Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Applications performing extrusion detection must be capable of denying network traffic and auditing internal users (or malicious code) posing a threat to external information systems.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-32563 | SRG-APP-000259-DB-NA | SV-42900r1_rule | Medium |
| Description |
|---|
| Detecting internal actions that may pose a security threat to external information systems is sometimes termed extrusion detection. Extrusion detection at the information system boundary includes the analysis of network traffic (incoming as well as, outgoing) looking for indications of an internal threat to the security of external systems. This requirement applies to applications that perform extrusion detection. This requirement is NA for databases. |
| STIG | Date |
|---|---|
| Database Security Requirements Guide | 2012-07-02 |
Details
| Check Text ( C-41002r1_chk ) |
|---|
| This check is NA for databases. |
| Fix Text (F-36478r1_fix) |
|---|
| This fix is NA for databases. |