UCF STIG Viewer Logo

The IAO/NSO will ensure that security alarms are set up within the managed network's framework. At a minimum, these will include the following: - Integrity Violation: Indicates that network contents or objects have been illegally modified, deleted, or added. - Operational Violation: Indicates that a desired object or service could not be used. - Physical Violation: Indicates that a physical part of the network (such as a cable) has been damaged or modified without authorization. - Security Mechanism Violation: Indicates that the network's security system has been compromised or breached. - Time Domain Violation: Indicates that an event has happened outside its allowed or typical time slot.


Overview

Finding ID Version Rule ID IA Controls Severity
V-3046 NET1710 SV-3046r1_rule ECSC-1 Low
Description
Without the proper categories of security alarms being defined on the NMS, responding to critical outages or attacks on the network may not be coordinated correctly with the right personnel, hardware, software or vendor maintenance. Delays will inevitably occur which will cause network outages to last longer than necessary or expose the network to larger, more extensive attacks or outages.
STIG Date
Network Devices Security Technical Implementation Guide 2018-11-27

Details

Check Text ( C-3826r1_chk )
Request that the network engineer demonstrate the alert capabilities.
Fix Text (F-3071r1_fix)
The NSO will ensure that the NMS is configured, at a minimum, to alarm on the following security violations: integrity, operational, physical, security mechanism, and time domain violation.