The application must reject or delay, as defined by the organization, network traffic generated above configurable traffic volume thresholds.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-36200	SRG-APP-106-NA	SV-47604r1_rule		Medium

Description
It is critical when a system is at risk of failing to process audit logs as required; actions are automatically taken to mitigate the failure or risk of failure. One method used to thwart the auditing system is for an attacker to attempt to overwhelm the auditing system with large amounts of irrelevant data. The end result being audit logs that are either overwritten and activity thereby erased or disk space that is exhausted and any future activity is no longer logged. In many system configurations, the disk space allocated to the auditing system is separate from the disks allocated for the operating system; therefore, this may not result in a system outage. Rationale for non-applicability: MDM server functionality involves the transfer of small policy and configuration files and other commands, none of which are expected to trigger network volume thresholds. If such protection is desired, it is better performed by the operating system or a network firewall.

Description

It is critical when a system is at risk of failing to process audit logs as required; actions are automatically taken to mitigate the failure or risk of failure. One method used to thwart the auditing system is for an attacker to attempt to overwhelm the auditing system with large amounts of irrelevant data. The end result being audit logs that are either overwritten and activity thereby erased or disk space that is exhausted and any future activity is no longer logged. In many system configurations, the disk space allocated to the auditing system is separate from the disks allocated for the operating system; therefore, this may not result in a system outage. Rationale for non-applicability: MDM server functionality involves the transfer of small policy and configuration files and other commands, none of which are expected to trigger network volume thresholds. If such protection is desired, it is better performed by the operating system or a network firewall.

STIG	Date
Mobile Device Manager Security Requirements Guide	2013-01-24

Details

Check Text ( C-44439r1_chk )
This requirement is NA for the MDM server SRG.

Fix Text (F-40730r1_fix)
The requirement is NA. No fix is required.