Documentation - V-222485

V-222485

Application Security and Development Security Technical Implementation Guide

CAT II

Title

The application must alert the ISSO and SA (at a minimum) in the event of an audit processing failure.

Description

<VulnDiscussion>It is critical for the appropriate personnel to be aware if a system is at risk of failing to process audit logs as required. Without this notification, the security personnel may be unaware of an impending failure of the audit capability and system operation may be adversely affected. Audit processing failures include software/hardware errors, failures in the audit capturing mechanisms, and audit storage capacity being reached or exceeded. This requirement applies to each aud...

Fix Text (Documentation Requirement)

Configure the application to send an alarm in the event the audit system has failed or is failing.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel