Skip to content

I - Mission Critical Classified

Rules and Groups employed by this XCCDF Profile

  • SRG-APP-000516-DB-000363

    <GroupDescription></GroupDescription>
    Group
  • Database backup procedures must be defined, documented, and implemented.

    &lt;VulnDiscussion&gt;Information system backup is a critical step in maintaining data assurance and availability. User-level information is data ...
    Rule Medium Severity
  • SRG-APP-000516-DB-000363

    <GroupDescription></GroupDescription>
    Group
  • Database recovery procedures must be developed, documented, implemented, and periodically tested.

    &lt;VulnDiscussion&gt;Information system backup is a critical step in maintaining data assurance and availability. User-level information is data ...
    Rule Medium Severity
  • SRG-APP-000243-DB-000374

    <GroupDescription></GroupDescription>
    Group
  • DBMS backup and restoration files must be protected from unauthorized access.

    &lt;VulnDiscussion&gt;Information system backup is a critical step in maintaining data assurance and availability. User-level information is data ...
    Rule Medium Severity
  • SRG-APP-000023-DB-000001

    <GroupDescription></GroupDescription>
    Group
  • The DBMS must use multifactor authentication for access to user accounts.

    &lt;VulnDiscussion&gt;Multifactor authentication is defined as using two or more factors to achieve authentication. Factors include: (i) Somethin...
    Rule High Severity
  • SRG-APP-000148-DB-000103

    <GroupDescription></GroupDescription>
    Group
  • The DBMS must ensure users are authenticated with an individual authenticator prior to using a shared authenticator.

    &lt;VulnDiscussion&gt;To assure individual accountability and prevent unauthorized access, application users (and any processes acting on behalf of...
    Rule Medium Severity
  • SRG-APP-000516-DB-000363

    <GroupDescription></GroupDescription>
    Group
  • The DBMS must disable user accounts after 35 days of inactivity.

    &lt;VulnDiscussion&gt;Attackers that are able to exploit an inactive DBMS account can potentially obtain and maintain undetected access to the data...
    Rule Medium Severity
  • SRG-APP-000164-DB-000401

    <GroupDescription></GroupDescription>
    Group
  • The DBMS must support organizational requirements to enforce minimum password length.

    &lt;VulnDiscussion&gt;Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute...
    Rule Medium Severity
  • SRG-APP-000164-DB-000401

    <GroupDescription></GroupDescription>
    Group
  • The DBMS must support organizational requirements to prohibit password reuse for the organization-defined number of generations.

    &lt;VulnDiscussion&gt;Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute...
    Rule Medium Severity
  • SRG-APP-000164-DB-000401

    <GroupDescription></GroupDescription>
    Group
  • The DBMS must support organizational requirements to enforce password complexity by the number of upper-case characters used.

    &lt;VulnDiscussion&gt;Password complexity or strength is a measure of the effectiveness of a password in resisting attempts at guessing and brute-f...
    Rule Medium Severity
  • SRG-APP-000164-DB-000401

    <GroupDescription></GroupDescription>
    Group
  • The DBMS must support organizational requirements to enforce password complexity by the number of lower-case characters used.

    &lt;VulnDiscussion&gt;Password complexity or strength is a measure of the effectiveness of a password in resisting attempts at guessing and brute-f...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules