STIGQter: STIG Summary: Network Infrastructure Policy Security Technical Implementation Guide Version: 9 Release: 10 Benchmark Date: 24 Jan 2020:

The Intrusion Detection and Prevention System (IDPS) software and signatures must be updated when updates are provided by the vendor.

DISA Rule

SV-8566r2_rule

Vulnerability Number

V-8080

Group Title

SA has not subscribed to the vendor notifications.

Rule Version

NET-IDPS-035

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Have the IDPS administrator subscribe to the X-press notification or similar service offered by the vendor. Ensure the IDPS software is updated when software is available either by DISA or the vendor for security related distributions.

Check Contents

Interview the ISSO and the IDPS administrator. Have the IDPS administrator display update notifications that have been received, the build number or patch level, then search the vendor’s vulnerability database for current release and patch level.

If software and signatures are not updated when updates are provided by the vendor, this is a finding.

Vulnerability Number

V-8080

Documentable

False

Rule Version

NET-IDPS-035

Severity Override Guidance

Interview the ISSO and the IDPS administrator. Have the IDPS administrator display update notifications that have been received, the build number or patch level, then search the vendor’s vulnerability database for current release and patch level.

If software and signatures are not updated when updates are provided by the vendor, this is a finding.

Check Content Reference

M

Target Key

838

Comments