Documentation - V-222615

V-222615

Application Security and Development Security Technical Implementation Guide

CAT II

Title

The application performing organization-defined security functions must verify correct operation of security functions.

Description

<VulnDiscussion>Without verification, security functions may not operate correctly and this failure may go unnoticed. Security function is defined as the hardware, software, and/or firmware of the information system responsible for enforcing the system security policy and supporting the isolation of code and data on which the protection is based. Security functionality includes, but is not limited to, establishing system accounts, configuring access authorizations (i.e., permissions, privileges...

Fix Text (Documentation Requirement)

Design the application to verify the correct operation of security functions.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel