The router must be configured to detect the presence of unauthorized software on organizational information systems.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000181-RTR-NA	SRG-NET-000181-RTR-NA	SRG-NET-000181-RTR-NA_rule		Medium

Description
Malicious software such as Trojan horses, hacker tools, DDoS (Distributed Denial of Service) agents, and spyware can establish a base on individual desktops and servers. Many of these are not detected by antivirus software or even host intrusion detection systems. Once they have residency within the network, unauthorized users are able to breach firewalls and access sensitive data by assuming the identity of authorized users. The goal of running vulnerability assessment scans is to identify devices on your network that are open to known vulnerabilities. This requirement is applicable to network device management and is not applicable to the routing function.

Description

Malicious software such as Trojan horses, hacker tools, DDoS (Distributed Denial of Service) agents, and spyware can establish a base on individual desktops and servers. Many of these are not detected by antivirus software or even host intrusion detection systems. Once they have residency within the network, unauthorized users are able to breach firewalls and access sensitive data by assuming the identity of authorized users. The goal of running vulnerability assessment scans is to identify devices on your network that are open to known vulnerabilities. This requirement is applicable to network device management and is not applicable to the routing function.

STIG	Date
Router Security Requirements Guide	2013-07-30

Details

Check Text ( C-SRG-NET-000181-RTR-NA_chk )
This requirement is NA for router.

Fix Text (F-SRG-NET-000181-RTR-NA_fix)
This requirement is NA for router.