The DNS implementation must support organizational requirements to conduct backups of information system documentation including security-related documentation per organization defined frequency that is consistent with recovery time and recovery point object.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-34088 | SRG-NET-000137-DNS-000078 | SV-44541r1_rule | Medium |
| Description |
|---|
| Information system backup is a critical step in maintaining data assurance and availability. Information system and security related documentation contains information pertaining to system configuration and security settings. If this information were not backed up, and a system failure occurred, the security settings would be difficult to reconfigure quickly and accurately. Maintaining a back up of information system and security related documentation provides for a quicker recovery time in the midst of a system outage. |
| STIG | Date |
|---|---|
| Domain Name System (DNS) Security Requirements Guide | 2012-10-24 |
Details
| Check Text ( C-42047r1_chk ) |
|---|
| Review the DNS backup configuration to determine if the DNS implementation backs up the information system documentation, including security-related documentation, per organization defined frequency that is consistent with recovery time and recovery point object. If the DNS implementation does not back up the information system documentation, including security-related documentation, this is a finding. |
| Fix Text (F-37998r1_fix) |
|---|
| Configure the DNS implementation to conduct backups of information system documentation including security-related documentation per organization defined frequency that is consistent with recovery time and recovery point object. |