Documentation - V-222587

V-222587

Application Security and Development Security Technical Implementation Guide

CAT II

Title

The application must protect the confidentiality and integrity of stored information when required by DOD policy or the information owner.

Description

<VulnDiscussion>Information at rest refers to the state of information when it is located on a secondary storage device (e.g., disk drive and tape drive) within an organizational information system. Mobile devices, laptops, desktops, and storage devices can be either lost or stolen, and the contents of their data storage (e.g., hard drives and non-volatile memory) can be read, copied, or altered. Applications and application users generate information throughout the course of their application...

Fix Text (Documentation Requirement)

Identify data elements that require protection. Document the data types and specify protection requirements and methods used.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel