Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The DNS implementation must protect the confidentiality and integrity of system information at rest.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-34204 | SRG-NET-000238-DNS-000144 | SV-44680r1_rule | Medium |
| Description |
|---|
| This requirement is intended to address the confidentiality and integrity of system information at rest when it is located on a secondary storage device within the DNS element. It is imperative that system data that is generated, as well as device configuration data, is protected. If system information is not adequately protected, the confidentiality of the data cannot be guaranteed and may be disclosed to unauthorized individuals. Organizations may choose to employ different mechanisms to achieve confidentiality and integrity protections, as appropriate. |
| STIG | Date |
|---|---|
| Domain Name System (DNS) Security Requirements Guide | 2012-10-24 |
Details
| Check Text ( C-42185r1_chk ) |
|---|
| Review the DNS implementation and configuration settings to determine if it is configured to protect the confidentiality and integrity of system information at rest. If the confidentiality and integrity of system information is not protected, this is a finding. |
| Fix Text (F-38134r1_fix) |
|---|
| Configure the DNS implementation to protect the confidentiality and integrity of system information at rest. |