The IDPS must fail to an organizationally defined known-state for organizationally defined types of failures.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000235-IDPS-000193 | SRG-NET-000235-IDPS-000193 | SRG-NET-000235-IDPS-000193_rule | Low |
| Description |
|---|
| Failure in a known state can address safety or security in accordance with the mission needs of the organization. Failure to a state that is known to be secure helps prevent the loss of confidentiality, integrity, or availability in the event of a failure of the information system or a component of the system. |
| STIG | Date |
|---|---|
| IDPS Security Requirements Guide (SRG) | 2012-03-08 |
Details
| Check Text ( C-43346_chk ) |
|---|
| Examine the configuration settings for hardware and/or application failover of the sensors. Verify the IDPS sensors and management console are configured to fail to an organizationally defined secure state. Verify this secure state prevents or limits unauthorized, unaudited access. If the system failover or hardware/software failure settings are not configured to fail to an organizationally defined known-state for organizationally defined types of failures, this is a finding. |
| Fix Text (F-43346_fix) |
|---|
| Configure the system failover or hardware/software failure settings to fail to an organizationally defined known-state for organizationally defined types of failures. Configure an organizationally defined state that prevents or limits unauthorized, unaudited access. |