UCF STIG Viewer Logo

Applications must use internal system clocks to generate time stamps for audit records.


Overview

Finding ID Version Rule ID IA Controls Severity
V-35352 SRG-APP-000116-MAPP-NA SV-46639r1_rule Medium
Description
Determining the correct time a particular event occurred on a system is critical when conducting forensic analysis and investigating system events. Time stamps generated by the information system shall include both date and time. The time may be expressed in Coordinated Universal Time (UTC), a modern continuation of Greenwich Mean Time (GMT), or local time with an offset from UTC. Rationale for non-applicability: The MOS SRG contains a requirement for logging application startup and a number of other security critical events. No further audit logging must be coded into each application running on the MOS, but application developers may do so for application-specific concerns.
STIG Date
Mobile Application Security Requirements Guide 2013-01-04

Details

Check Text ( C-43720r1_chk )
This requirement is NA for the MAPP SRG.
Fix Text (F-39899r1_fix)
The requirement is NA. No fix is required.