The network element must be configured to automatically check for security updates to the application software on an organizationally defined frequency.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-34755	SRG-NET-000242-IDPS-NA	SV-45665r1_rule		Low

Description
Security relevant software updates must be installed promptly and updated in order to mitigate the exploitation of known vulnerabilities. Flaws discovered during security assessments, continuous monitoring, incident response activities, or information system error handling, must also be addressed expeditiously. By requiring the automated update of application software on a periodic schedule, flaws and newly discovered attack vendors will be remediated in a timely manner. This requirement applies to flaw remediation systems. Flaw remediation is not a function of the IDPS.

Description

Security relevant software updates must be installed promptly and updated in order to mitigate the exploitation of known vulnerabilities. Flaws discovered during security assessments, continuous monitoring, incident response activities, or information system error handling, must also be addressed expeditiously. By requiring the automated update of application software on a periodic schedule, flaws and newly discovered attack vendors will be remediated in a timely manner. This requirement applies to flaw remediation systems. Flaw remediation is not a function of the IDPS.

STIG	Date
Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide	2012-11-19

Details

Check Text ( C-43031r1_chk )
This requirement is NA for IDPS. No fix required.

Fix Text (F-39063r1_fix)
This requirement is NA for IDPS. No fix required.