The IDPS must be configured to remove or disable non-essential features, functions, and services of the IDPS application.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-34625 | SRG-NET-000131-IDPS-00097 | SV-45500r2_rule | Medium |
| Description |
|---|
| An IDPS can be capable of providing a wide variety of capabilities. Not all of these capabilities are necessary. Unnecessary services, functions, and applications increase the attack surface (sum of attack vectors) of a system. These unnecessary capabilities are often overlooked and therefore may remain unsecured. This requirement applies to unnecessary features of the IDPS application itself. |
| STIG | Date |
|---|---|
| Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide | 2015-06-26 |
Details
| Check Text ( None ) |
|---|
| None |
| Fix Text (None) |
|---|
| None |