The network element must implement isolation boundary to minimize the number of non-security functions included within the boundary containing security functions.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-27387 | SRG-NET-000187 | SV-34695r1_rule | Medium |
| Description |
|---|
| The network element isolates security functions from non-security functions by means of an isolation boundary (implemented via partitions and domains) controlling access to and protects the integrity of, the hardware, software, and firmware performing those security functions. The network element maintains a separate execution domain (e.g., address space) for each executing process. |
| STIG | Date |
|---|---|
| Network Security Requirements Guide | 2011-12-28 |
Details
| Check Text ( None ) |
|---|
| None |
| Fix Text (None) |
|---|
| None |