The organization must establish weekly data backup procedures for the network Intrusion Detection and Prevention System (IDPS) data.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-251346 | NET-IDPS-033 | SV-251346r805993_rule | CCI-000366 | medium |
| Description | ||||
| IDPS data needs to be backed up to ensure preservation in the case a loss of data due to hardware failure or malicious activity. | ||||
| STIG | Date | |||
| Network Infrastructure Policy Security Technical Implementation Guide | 2024-08-02 | |||
Related Frameworks
4 paths across 3 frameworks
Related Frameworks
NIST 800-531 mapping
CM-6
1.00
- DISA · V10R7 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1712 mappings
3.4.1
1.00
- DISA · V10R7 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
3.4.2
1.00
- DISA · V10R7 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-000366
1.00
- DISA · V10R7 · disa_xccdf · related
Details
Check Text (C-251346r805993_chk)
Interview the SA to determine the IDPS backup procedures as well as have SA display the backup files saved on the file server.
If the IDPS data is not backed up on a weekly basis, this is a finding.
Fix Text (F-54734r805992_fix)
The organization must establish weekly backup procedures for the network IDS/IPS data.