Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Storage Area Network STIG
Physical Access to SAN Network Devices
Physical Access to SAN Network Devices
An XCCDF Group - A logical subset of the XCCDF Benchmark
Details
Profiles
Prose
Physical Access to SAN Network Devices
1 Rule
<GroupDescription></GroupDescription>
All the network level devices interconnected to the SAN are not located in a secure room with limited access.
Medium Severity
<VulnDiscussion>If the network level devices are not located in a secure area they can be tampered with which could lead to a denial of service if the device is powered off or sensitive data can be compromised by a tap connected to the device. The IAO/NSO will ensure that all the network level devices interconnected to the SAN are located in a secure room with limited access.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts>Moving devices can disrupt the SAN environment while the move is taking place.</PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility>Information Assurance Officer</Responsibility><Responsibility>Network Security Officer</Responsibility><IAControls>PECF-1, PECF-2</IAControls>