The Intrusion Detection and Prevention System (IDPS) software and signatures must be updated when updates are provided by the vendor.

An XCCDF Rule

Description

<VulnDiscussion>Keeping the IDPS software updated with the latest engine and attack signatures will allow for the IDPS to detect all forms of known attacks. Not maintaining the IDPS properly could allow for attacks to go unnoticed.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-251347r805996_rule
Severity: Low
References: CCI-000366
Updated: 9 months ago

Have the IDPS administrator subscribe to the X-press notification or similar service offered by the vendor. Ensure the IDPS software is updated when software is available either by DISA or the vendor for security related distributions.

The Intrusion Detection and Prevention System (IDPS) software and signatures must be updated when updates are provided by the vendor.

Description

Remediation - Manual Procedure