Database contents must be protected from unauthorized and unintended information transfer by enforcement of a data-transfer policy.

An XCCDF Rule

Description

<VulnDiscussion>Security functions are the hardware, software, and/or firmware of the information system responsible for enforcing the system security policy and supporting the isolation of code and data on which the protection is based.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-251245r961149_rule
Severity: Medium
References: CCI-001090
Updated: 17 days ago

Modify any code used for moving data from production to development/test systems to comply with the organization-defined data transfer policy, and to ensure copies of production data are not left in unsecured locations.

Database contents must be protected from unauthorized and unintended information transfer by enforcement of a data-transfer policy.

Description

Remediation - Manual Procedure