The network element must perform data origin authentication and data integrity verification on the name/address resolution responses the system receives from authoritative sources when requested by client systems.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000302-IDPS-NA	SRG-NET-000302-IDPS-NA	SRG-NET-000302-IDPS-NA_rule		Medium

Description
A recursive resolving or caching domain name system (DNS) server is an example of an information system that provides name/address resolution service for local clients. Authoritative DNS servers are examples of authoritative sources. Network element that use technologies other than the DNS to map between host/service names and network addresses provide other means to enable clients to verify the authenticity and integrity of response data.

Description

A recursive resolving or caching domain name system (DNS) server is an example of an information system that provides name/address resolution service for local clients. Authoritative DNS servers are examples of authoritative sources. Network element that use technologies other than the DNS to map between host/service names and network addresses provide other means to enable clients to verify the authenticity and integrity of response data.

STIG	Date
IDPS Security Requirements Guide (SRG)	2012-03-08

Details

Check Text ( C-43337_chk )
This requirement does not apply to IDPS.

Fix Text (F-43337_fix)
Not applicable for IDPS. No fix required.