STIGQter: STIG Summary: Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide Version: 2 Release: 6 Benchmark Date: 24 Jul 2020:

The IDPS must verify the integrity of updates obtained directly from the vendor.

DISA Rule

SV-45683r2_rule

Vulnerability Number

V-34759

Group Title

SRG-NET-000246-IDPS-00175

Rule Version

SRG-NET-000246-IDPS-00175

Severity

CAT II

CCI(s)

CCI-001240 - The organization updates malicious code protection mechanisms whenever new releases are available in accordance with organizational configuration management policy and procedures.

Weight

Fix Recommendation

Configure the IDPS to verify the integrity of updates obtained directly from the vendor.

Check Contents

Verify the IDPS verifies the integrity of updates obtained directly from the vendor.

If the IDPS does not verify the integrity of updates obtained directly from the vendor, this is a finding.

Vulnerability Number

V-34759

Documentable

False

Rule Version

SRG-NET-000246-IDPS-00175

Severity Override Guidance

Verify the IDPS verifies the integrity of updates obtained directly from the vendor.

If the IDPS does not verify the integrity of updates obtained directly from the vendor, this is a finding.

Check Content Reference

Target Key

2358

The IDPS must verify the integrity of updates obtained directly from the vendor.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments