The ALG must implement antispoofing mechanisms to prevent adversaries from falsifying the security attributes indicating the successful application of the security process.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-263543 | SRG-NET-000735-ALG-000130 | SV-263543r981660_rule | CCI-004905 | medium |
| Description | ||||
| Some attack vectors operate by altering the security attributes of an information system to intentionally and maliciously implement an insufficient level of security within the system. The alteration of attributes leads organizations to believe that a greater number of security functions are in place and operational than have actually been implemented. | ||||
| STIG | Date | |||
| Application Layer Gateway Security Requirements Guide | 2024-12-04 | |||
Details
Check Text (C-263543r981660_chk)
Verify the ALG is configured to implement antispoofing mechanisms to prevent adversaries from falsifying the security attributes indicating the successful application of the security process.
If the ALG is not configured to implement antispoofing mechanisms to prevent adversaries from falsifying the security attributes indicating the successful application of the security process, this is a finding.
Fix Text (F-67351r981659_fix)
Configure the ALG to implement antispoofing mechanisms to prevent adversaries from falsifying the security attributes indicating the successful application of the security process.