The IDPS must support organizational requirements to conduct backups of information system documentation, including security related documentation, per organizationally defined frequency that is consistent with recovery time and recovery point objectives.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-34631	SRG-NET-000137-IDPS-00102	SV-45506r1_rule		Low

Description
Information system backup is a critical step in maintaining data assurance and availability. Information system and security related documentation contains information pertaining to system configuration and security settings. If this information was not backed up, and a system failure occurred, the security settings would be difficult to reconfigure quickly and accurately. Maintaining a back up of information system and security related documentation provides for a quicker recovery time when system outages occur. This control requires the IDPS support the organizational central backup process for user account information associated with the IDPS. This function may be provided by the IDPS itself; however, the preferred best practice is a centralized backup rather than each network element performing discrete backups.

Description

Information system backup is a critical step in maintaining data assurance and availability. Information system and security related documentation contains information pertaining to system configuration and security settings. If this information was not backed up, and a system failure occurred, the security settings would be difficult to reconfigure quickly and accurately. Maintaining a back up of information system and security related documentation provides for a quicker recovery time when system outages occur. This control requires the IDPS support the organizational central backup process for user account information associated with the IDPS. This function may be provided by the IDPS itself; however, the preferred best practice is a centralized backup rather than each network element performing discrete backups.

STIG	Date
Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide	2012-11-19

Details

Check Text ( C-42855r1_chk )
Review the IDPS backup configuration to determine if the IDPS backs up the information system documentation, including security-related documentation, per organization defined frequency that is consistent with recovery time and recovery point object. If the IDPS does not back up the information system documentation, including security-related documentation, this is a finding.

Fix Text (F-38903r1_fix)
Configure the IDPS to conduct backups of information system documentation including security-related documentation per organization defined frequency that is consistent with recovery time and recovery point object.