The application server must record time stamps for log records that meet a granularity of one second for a minimum degree of precision.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-204795 | SRG-APP-000375-AS-000211 | SV-204795r961446_rule | CCI-001889 | medium |
| Description | ||||
| To investigate an incident, the log records should be easily put into chronological order. Without sufficient granularity of time stamps, the chronological order cannot be determined. Time stamps generated by the application server include date and time. Granularity of time measurements refers to the degree of synchronization between information system clocks and reference clocks. | ||||
| STIG | Date | |||
| Application Server Security Requirements Guide | 2025-02-11 | |||
Related Frameworks
3 paths across 3 frameworks
Related Frameworks
NIST 800-531 mapping
AU-8
1.00
- DISA · 4 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1711 mapping
3.3.7
1.00
- DISA · 4 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-001889
1.00
- DISA · 4 · disa_xccdf · related
Details
Check Text (C-204795r961446_chk)
Review the application server documentation and configuration files to determine if time stamps for log records meet a granularity of one second.
If the time stamp cannot generate to a one-second granularity, this is a finding.
Fix Text (F-4915r283033_fix)
Configure the application server to use time stamps for log records that can meet a granularity of one second.