Network Infrastructure Policy Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Products collecting baselines for anomaly-based detection must have their baselines rebuilt based on changes to mission requirements such as Information Operations Conditions (INFOCON) levels and when the traffic patterns are expected to change significantly.
<VulnDiscussion>Administrators should ensure that any products collecting baselines for anomaly-based detection have their baselines rebuilt ...Rule Low Severity -
NET-IDPS-029
<GroupDescription></GroupDescription>Group -
If a Secure File Transfer Protocol (SFTP) server is used to provide updates to the sensors, the server must be configured to allow read-only access to the files within the directory on which the signature packs are placed.
<VulnDiscussion>In a large scale IDPS deployment, it is common to have an automated update process implemented. This is accomplished by havin...Rule Medium Severity -
NET-IDPS-030
<GroupDescription></GroupDescription>Group -
If an automated scheduler is used to provide updates to the sensors, an account on the file server must be defined that will provide access to the signatures only to the sensors.
<VulnDiscussion>In a large scale IDPS deployment, it is common to have an automated update process implemented. This is accomplished by havin...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.