Application Layer Gateway Security Requirements Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
The ALG that is part of a CDS, when transferring information between different security domains, must use organization-defined data type identifiers to validate data essential for information flow decisions.
<VulnDiscussion>Information flow decisions based on invalid data may allow unintended and unauthorized data flows, and therefore risk the con...Rule Medium Severity -
SRG-NET-000325
<GroupDescription></GroupDescription>Group -
The ALG that is part of a CDS must uniquely identify and authenticate destination by organization, system, application, and/or individual for information transfer.
<VulnDiscussion>Attribution is a critical component of a security concept of operations. The ability to identify source and destination point...Rule Medium Severity -
SRG-NET-000328
<GroupDescription></GroupDescription>Group -
The ALG that is part of a CDS, when transferring information between different security domains, must apply the same security policy filtering to metadata as it applies to data payloads.
<VulnDiscussion>Subjecting metadata to the same filtering and inspection policies as payload data helps to mitigate the risk of data compromi...Rule Medium Severity -
SRG-NET-000329
<GroupDescription></GroupDescription>Group -
The ALG that is part of a CDS must enforce the use of human reviews for organization-defined information flows under organization-defined conditions.
<VulnDiscussion>Without network element enforcement of human reviews, security policy filters may have false positives and false negatives in...Rule Medium Severity -
SRG-NET-000331
<GroupDescription></GroupDescription>Group -
The ALG providing user access control intermediary services must provide the capability for authorized users to select a user session to capture or view.
<VulnDiscussion>Without the capability to select a user session to capture or view, investigations into suspicious or harmful events would be...Rule Medium Severity -
SRG-NET-000334
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.