STIGQter: STIG Summary: Database Security Requirements Guide Version: 3 Release: 1 Benchmark Date: 22 Jan 2021:

The DBMS must produce audit records containing time stamps to establish when the events occurred.

DISA Rule

SV-206529r617447_rule

Vulnerability Number

V-206529

Group Title

SRG-APP-000096

Rule Version

SRG-APP-000096-DB-000040

Severity

CAT II

CCI(s)

• CCI-000131 - The information system generates audit records containing information that establishes when an event occurred.

Weight

10

Fix Recommendation

Configure DBMS audit settings to include the date and time of the occurrence of the event as part of the audit record.

Check Contents

Check DBMS settings and existing audit records to verify information specific to the date and time of the event is being captured and stored with the audit records.

If audit records exist without the date and time of the event, this is a finding.

Vulnerability Number

V-206529

Documentable

False

Rule Version

SRG-APP-000096-DB-000040

Severity Override Guidance

Check DBMS settings and existing audit records to verify information specific to the date and time of the event is being captured and stored with the audit records.

If audit records exist without the date and time of the event, this is a finding.

Check Content Reference

M

Target Key

2902

Comments