Documentation - V-222617

V-222617

Application Security and Development Security Technical Implementation Guide

CAT III

Title

The application must notify the ISSO and ISSM of failed security verification tests.

Description

<VulnDiscussion>If personnel are not notified of failed security verification tests, they will not be able to take corrective action and the unsecure condition(s) will remain. Security function is defined as the hardware, software, and/or firmware of the information system responsible for enforcing the system security policy and supporting the isolation of code and data on which the protection is based. Security functionality includes, but is not limited to, establishing system accounts, config...

Fix Text (Documentation Requirement)

Configure the application to send notices to the ISSO and ISSM indicating the application failed a verification test.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel