DBN-6300 NDM Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000080-NDM-000220
<GroupDescription></GroupDescription>Group -
The DBN-6300 must protect against an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation.
<VulnDiscussion>This requirement supports non-repudiation of actions taken by an administrator and is required in order to maintain the integ...Rule Low Severity -
SRG-APP-000516-NDM-000334
<GroupDescription></GroupDescription>Group -
The DBN-6300 must generate audit log events for a locally developed list of auditable events.
<VulnDiscussion>Auditing and logging are key components of any security architecture. Logging the actions of specific events provides a means...Rule Medium Severity -
SRG-APP-000089-NDM-000221
<GroupDescription></GroupDescription>Group -
The DBN-6300 must produce audit records containing information to establish where the events occurred.
<VulnDiscussion>In order to compile an accurate risk assessment and provide forensic analysis, it is essential for security personnel to know...Rule Low Severity -
The DBN-6300 must provide audit record generation capability for DoD-defined auditable events within the DBN-6300.
<VulnDiscussion>Without the capability to generate audit records, it would be difficult to establish, correlate, and investigate the events r...Rule Medium Severity -
SRG-APP-000090-NDM-000222
<GroupDescription></GroupDescription>Group -
The DBN-6300 must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be generated and forwarded to the audit log.
<VulnDiscussion>Without the capability to restrict which roles and individuals can select which events are audited, unauthorized personnel ma...Rule Low Severity -
SRG-APP-000091-NDM-000223
<GroupDescription></GroupDescription>Group -
The DBN-6300 must generate log records when successful attempts to access privileges occur.
<VulnDiscussion>Without generating audit records that are specific to the security and mission needs of the organization, it would be difficu...Rule Medium Severity -
SRG-APP-000092-NDM-000224
<GroupDescription></GroupDescription>Group -
The DBN-6300 must initiate session auditing upon startup.
<VulnDiscussion>If auditing is enabled late in the startup process, the actions of some start-up processes may not be audited. Some audit sys...Rule Low Severity -
SRG-APP-000095-NDM-000225
<GroupDescription></GroupDescription>Group -
The DBN-6300 must produce audit log records containing sufficient information to establish what type of event occurred.
<VulnDiscussion>It is essential for security personnel to know what is being done, what was attempted, where it was done, when it was done, a...Rule Low Severity -
SRG-APP-000096-NDM-000226
<GroupDescription></GroupDescription>Group -
SRG-APP-000098-NDM-000228
<GroupDescription></GroupDescription>Group -
The DBN-6300 must produce audit records that contain information to establish the outcome of the event.
<VulnDiscussion>Without information about the outcome of events, security personnel cannot make an accurate assessment as to whether an attac...Rule Low Severity -
SRG-APP-000100-NDM-000230
<GroupDescription></GroupDescription>Group -
The DBN-6300 must generate audit records containing information that establishes the identity of any individual or process associated with the event.
<VulnDiscussion>Without information that establishes the identity of the subjects (i.e., administrators or processes acting on behalf of admi...Rule Low Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.