The network element must uniquely authenticate destination domains for information transfer.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-33919	SRG-NET-000027-DNS-NA	SV-44372r1_rule		Medium

Description
Identifying source and destination addresses for information flows within the network allows forensic reconstruction of events when required, and increases policy compliance by attributing policy violations to specific individuals. Means to enforce this enhancement include ensuring the network element authenticates the source involved in receiving information. Authentication of destination security domains is not a function of DNS.

Description

Identifying source and destination addresses for information flows within the network allows forensic reconstruction of events when required, and increases policy compliance by attributing policy violations to specific individuals. Means to enforce this enhancement include ensuring the network element authenticates the source involved in receiving information. Authentication of destination security domains is not a function of DNS.

STIG	Date
Domain Name System (DNS) Security Requirements Guide	2012-10-24

Details

Check Text ( C-41928r1_chk )
This is not a function of DNS.

Fix Text (F-37832r1_fix)
This requirement is NA for DNS. No fix required.