III - Administrative Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-NET-000510
<GroupDescription></GroupDescription>Group -
The ALG providing encryption intermediary services must use NIST FIPS-validated cryptography to implement encryption services.
<VulnDiscussion>Use of weak or untested encryption algorithms undermines the purposes of utilizing encryption to protect data. The network el...Rule Medium Severity -
SRG-NET-000511
<GroupDescription></GroupDescription>Group -
The ALG must off-load audit records onto a centralized log server in real time.
<VulnDiscussion>Off-loading ensures audit information does not get overwritten if the limited audit storage capacity is reached and also prot...Rule Medium Severity -
SRG-NET-000511
<GroupDescription></GroupDescription>Group -
The ALG that is part of a CDS must have the capability to implement journaling.
<VulnDiscussion>A journaling file system is a file system that keeps track of the changes that will be made in a journal (usually a circular ...Rule Medium Severity -
SRG-NET-000512
<GroupDescription></GroupDescription>Group -
The ALG must be configured in accordance with the security configuration settings based on DoD security policy and technology-specific security best practices.
<VulnDiscussion>Configuring the network element to implement organization-wide security implementation guides and security checklists ensures...Rule Medium Severity -
SRG-NET-000512
<GroupDescription></GroupDescription>Group -
The ALG that provides intermediary services for SMTP must inspect inbound and outbound SMTP and Extended SMTP communications traffic for protocol compliance and protocol anomalies.
<VulnDiscussion>Application protocol anomaly detection examines application layer protocols such as SMTP to identify attacks based on observe...Rule Medium Severity -
SRG-NET-000512
<GroupDescription></GroupDescription>Group -
The ALG that intermediary services for FTP must inspect inbound and outbound FTP communications traffic for protocol compliance and protocol anomalies.
<VulnDiscussion>Application protocol anomaly detection examines application layer protocols such as FTP to identify attacks based on observed...Rule Medium Severity -
SRG-NET-000512
<GroupDescription></GroupDescription>Group -
The ALG that provides intermediary services for HTTP must inspect inbound and outbound HTTP traffic for protocol compliance and protocol anomalies.
<VulnDiscussion>Application protocol anomaly detection examines application layer protocols such as HTTP to identify attacks based on observe...Rule Medium Severity -
SRG-NET-000513
<GroupDescription></GroupDescription>Group -
The ALG providing user access control intermediary services must generate audit records when successful/unsuccessful attempts to access privileges occur.
<VulnDiscussion>Without generating audit records that are specific to the security and mission needs of the organization, it would be difficu...Rule Medium Severity -
SRG-NET-000514
<GroupDescription></GroupDescription>Group -
The ALG providing user access control intermediary services must initiate a session lock after a 15-minute period of inactivity.
<VulnDiscussion>A session time-out lock is a temporary action taken when a user stops work and moves away from the immediate physical vicinit...Rule Medium Severity -
SRG-NET-000515
<GroupDescription></GroupDescription>Group -
The ALG providing user access control intermediary services must provide the capability for users to directly initiate a session lock.
<VulnDiscussion>A session lock is a temporary action taken when a user stops work and moves away from the immediate physical vicinity of the ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.