The IDPS must detect attack attempts to the wireless network.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000265-IDPS-000235 | SRG-NET-000265-IDPS-000235 | SRG-NET-000265-IDPS-000235_rule | Medium |
| Description |
|---|
| DoD information could be compromised if wireless scanning is not performed to identify unauthorized WLAN clients and access points connected to or attempting to connect to the network. A wireless IDS (WIDS) sensor must be installed and placed to monitor wireless network transmissions for possible attacks and unauthorized traffic. |
| STIG | Date |
|---|---|
| IDPS Security Requirements Guide (SRG) | 2012-03-08 |
Details
| Check Text ( C-43407_chk ) |
|---|
| Verify one or more sensors are installed to monitor the network for wireless networking protocols. If the site does not have a WIDS installed, this is a finding. |
| Fix Text (F-43407_fix) |
|---|
| Install and configure one or more WIDS to monitor the network for unauthorized wireless traffic. |