The organization must ensure WIDS sensor scan results are saved for at least 6 months (one year recommended).
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-35967 | SRG-MPOL-049 | SV-47283r1_rule | Low |
| Description |
|---|
| If organizations do not maintain scan logs, it cannot be determined if intrusion detection findings are isolated and harmless events, or a more sustained, methodical attack on the system. |
| STIG | Date |
|---|---|
| Mobile Policy Security Requirements Guide | 2013-07-03 |
Details
| Check Text ( C-44204r1_chk ) |
|---|
| Verify the organization has saved its scan results for at least 6 months (one year recommended), viewing one of the older logs to validate the practice. If the organization is not saving the wireless IDS scan results, or is saving them for less than 6 months, this is a finding. |
| Fix Text (F-40494r1_fix) |
|---|
| Maintain the results of wireless IDS sensor scan results for at least 6 months. |