Documentation - V-222480

V-222480

Application Security and Development Security Technical Implementation Guide

CAT II

Title

The application must provide centralized management and configuration of the content to be captured in audit records generated by all application components.

Description

<VulnDiscussion>Without the ability to centrally manage the content captured in the audit records, identification, troubleshooting, and correlation of suspicious behavior would be difficult and could lead to a delayed or incomplete analysis of an ongoing attack. This requirement requires that the content captured in audit records be managed from a central location (necessitating automation). Centralized management of audit records and logs provides for efficiency in maintenance and management o...

Fix Text (Documentation Requirement)

Configure the application to utilize a centralized log management system that provides the capability to configure the content of audit records.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel