Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
SRG-NET-000023-NDM-NA | SRG-NET-000023-NDM-NA | SRG-NET-000023-NDM-NA_rule | Medium |
Description |
---|
Transferring information between interconnected information systems of differing security policies introduces the risk of the transfers violating one or more policies. It is imperative for policy guidance from information owners be implemented at the policy enforcement point between the interconnected systems. If the network device is configured to update other network devices (e.g., network device ACL) and the update process violates the access control policy of the updated device, this is an issue which must be resolved. However, the network device must also be configured to monitor and enforce the security policies between other interconnected systems. This requirement is applicable to specific devices and does not involve the management of a network device. |
STIG | Date |
---|---|
Network Device Management Security Requirements Guide | 2013-07-30 |
Check Text ( C-SRG-NET-000023-NDM-NA_chk ) |
---|
This requirement is NA for network device management. |
Fix Text (F-SRG-NET-000023-NDM-NA_fix) |
---|
This requirement is NA for network device management. |