V-206459
SV-206459r960948_rule
CAT III
The Central Log Server system backups must be retained for a minimum of 5 years for SAMI (Sources and Methods Information) and a minimum of 7 days for non-SAMI on media capable of guaranteeing file integrity for the minimum applicable information retention period.
From: Central Log Server Security Requirements Guide (V3R4)
Description
<VulnDiscussion>If backups are not properly processed, protected, and stored on appropriate media, recovery from a system failure or implementation of a contingency plan would not include the data necessary to fully recover in the time required to ensure continued mission support.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
Check Procedure
Review the SSP, backup media documentation, and system backup configuration.
Verify the Central Log Server system is backed up to media capable of guaranteeing file integrity for a minimum of five years.
If the Central Log Server does not retain backups for a minimum of five years for SAMI and a minimum of seven days for non-SAMI, this is a finding.
If the Central Log Server system backups are not stored on appropriate media capable of guaranteeing file integrity for a minimum of five years for systems retaining SAMI, this is a finding.
Fix Text
Configure the Central Log Server to retain backups of system information for a minimum of five years for SAMI and a minimum of seven days for non-SAMI.
Select backup media that guarantees file integrity for a minimum of five years for systems retaining SAMI.
Document the required retention period in the SSP.
CCI Reference
CCI-000167,CCI-001348- Created
- 2026-04-07 20:08:13
- Last Updated
- 2026-04-07 20:08:13