The IDPS must be configured to automatically check for security updates to the application software on an organizationally defined frequency.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000242-IDPS-000219	SRG-NET-000242-IDPS-000219	SRG-NET-000242-IDPS-000219_rule		Low

Description
It is imperative that the activity promptly installs security-relevant software updates to mitigate the risk of new vulnerabilities. Flaws discovered during security assessments, continuous monitoring, incident response activities, or information system error handling, are also addressed expeditiously. By requiring the automated update of application software on a periodic schedule, flaws and newly discovered attack vendors will be remediated in a timely manner.

Description

It is imperative that the activity promptly installs security-relevant software updates to mitigate the risk of new vulnerabilities. Flaws discovered during security assessments, continuous monitoring, incident response activities, or information system error handling, are also addressed expeditiously. By requiring the automated update of application software on a periodic schedule, flaws and newly discovered attack vendors will be remediated in a timely manner.

STIG	Date
IDPS Security Requirements Guide (SRG)	2012-03-08

Details

Check Text ( C-43382_chk )
Verify an automated check for security updates for the IDPS application components installed on the management console and sensors is being performed on an organizationally defined frequency. If the system is not configured to automatically check for security updates to the application software on an organizationally defined frequency, this is a finding.

Fix Text (F-43382_fix)
Configure the patch management server or the IDPS to notify the IDPS system administrator of security updates to the application software on an organizationally defined frequency.