STIGQter: STIG Summary: Application Security and Development Security Technical Implementation Guide Version: 5 Release: 1 Benchmark Date: 23 Oct 2020:

The application must record a time stamp indicating when the event occurred.

DISA Rule

SV-222446r508029_rule

Vulnerability Number

V-222446

Group Title

SRG-APP-000089

Rule Version

APSC-DV-000670

Severity

CAT II

CCI(s)

• CCI-000169 - The information system provides audit record generation capability for the auditable events defined in AU-2 a. at organization-defined information system components.

Weight

10

Fix Recommendation

Configure the application to record the time the event occurred when recording the event.

Check Contents

Review the application logs.

If the time the event occurred is not included as part of the event, this is a finding.

Vulnerability Number

V-222446

Documentable

False

Rule Version

APSC-DV-000670

Severity Override Guidance

Review the application logs.

If the time the event occurred is not included as part of the event, this is a finding.

Check Content Reference

M

Target Key

4093

Comments