The network device must provide near real-time alerts when any of the organizationally defined list of compromise or potential compromise indicators occur.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000257-NDM-NA	SRG-NET-000257-NDM-NA	SRG-NET-000257-NDM-NA_rule		Medium

Description
When a compromise, potential compromise, or breach has been discovered by the intrusion detection system, it is critical the appropriate personnel are notified via an alert mechanism. Near real-time alerts for critical events allow the administrators to respond to these potential compromise indicators since they may miss other types of alerts if they are not currently logged into the network device. This control applies to monitoring by intrusion detection systems and is not applicable to network device management.

Description

When a compromise, potential compromise, or breach has been discovered by the intrusion detection system, it is critical the appropriate personnel are notified via an alert mechanism. Near real-time alerts for critical events allow the administrators to respond to these potential compromise indicators since they may miss other types of alerts if they are not currently logged into the network device. This control applies to monitoring by intrusion detection systems and is not applicable to network device management.

STIG	Date
Network Device Management Security Requirements Guide	2013-07-30

Details

Check Text ( C-SRG-NET-000257-NDM-NA_chk )
This requirement is NA for network device management.

Fix Text (F-SRG-NET-000257-NDM-NA_fix)
This requirement is NA for network device management.