The network element must respond to security function anomalies in accordance with organization-defined responses and alternative actions.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-27503	SRG-NET-000268	SV-34812r1_rule		Medium

Description
The need to verify security functionality is necessary to ensure that the network element’s defense is enabled. For those security functions that are not able to execute automated self-tests the organization either implements compensating security controls or explicitly accepts the risk of not performing the verification as required. Upon detection of security function anomalies or failure of automated self-tests, the network element must respond in accordance with organization-defined responses and alternative actions.

Description

The need to verify security functionality is necessary to ensure that the network element’s defense is enabled. For those security functions that are not able to execute automated self-tests the organization either implements compensating security controls or explicitly accepts the risk of not performing the verification as required. Upon detection of security function anomalies or failure of automated self-tests, the network element must respond in accordance with organization-defined responses and alternative actions.

STIG	Date
Network Security Requirements Guide	2011-12-28

Details

Check Text ( None )
None

Fix Text (None)
None