Documentation - V-222585

V-222585

Application Security and Development Security Technical Implementation Guide

CAT I

Title

The application must fail to a secure state if system initialization fails, shutdown fails, or aborts fail.

Description

<VulnDiscussion>Failure to a known safe state helps prevent systems from failing to a state that may cause loss of data or unauthorized access to system resources. Applications or systems that fail suddenly and with no incorporated failure state planning may leave the hosting system available but with a reduced security protection capability. Preserving information system state information also facilitates system restart and return to the operational mode of the organization with less disruption...

Fix Text (Documentation Requirement)

Fix any vulnerability found when the application is an insecure state (initialization, shutdown and aborts).

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel