The network element must decompose information into policy-relevant subcomponents for submission to policy enforcement mechanisms when transferring information between different security domains.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000282-FW-NA | SRG-NET-000282-FW-NA | SRG-NET-000282-FW-NA_rule | Low |
| Description |
|---|
| Information must be decomposed into policy-relevant subcomponents, so the applicable policies and filters can be applied when information is being transferred between different security domains. Data transfer requirements are not a firewall function. This requirement applies to information flow control for Cross Domain Solutions. |
| STIG | Date |
|---|---|
| Firewall Security Requirements Guide | 2012-12-10 |
Details
| Check Text ( C-SRG-NET-000282-FW-NA_chk ) |
|---|
| This requirement is NA for firewall. No fix required. |
| Fix Text (F-SRG-NET-000282-FW-NA_fix) |
|---|
| This requirement is NA for firewall. No fix required. |