Skip to content

Application Layer Gateway Security Requirements Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-NET-000089

    <GroupDescription></GroupDescription>
    Group
  • The ALG must shut down by default upon audit failure (unless availability is an overriding concern).

    &lt;VulnDiscussion&gt;It is critical that when the network element is at risk of failing to process audit logs as required, it take action to mitig...
    Rule Medium Severity
  • SRG-NET-000098

    <GroupDescription></GroupDescription>
    Group
  • The ALG must protect audit information from unauthorized read access.

    &lt;VulnDiscussion&gt;Auditing and logging are key components of any security architecture. Logging the actions of specific events provides a means...
    Rule Medium Severity
  • SRG-NET-000099

    <GroupDescription></GroupDescription>
    Group
  • The ALG must protect audit information from unauthorized modification.

    &lt;VulnDiscussion&gt;If audit data were to become compromised, then forensic analysis and discovery of the true source of potentially malicious sy...
    Rule Medium Severity
  • SRG-NET-000100

    <GroupDescription></GroupDescription>
    Group
  • The ALG must protect audit information from unauthorized deletion.

    &lt;VulnDiscussion&gt;If audit data were to become compromised, then forensic analysis and discovery of the true source of potentially malicious sy...
    Rule Medium Severity
  • SRG-NET-000101

    <GroupDescription></GroupDescription>
    Group
  • The ALG providing user authentication intermediary services must transmit only encrypted representations of passwords.

    &lt;VulnDiscussion&gt;Passwords need to be protected at all times and encryption is the standard method for protecting passwords. If passwords are ...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules