STIGQter STIGQter: STIG Summary: Application Security and Development Security Technical Implementation Guide Version: 5 Release: 1 Benchmark Date: 23 Oct 2020:

Back-up copies of the application software or source code must be stored in a fire-rated container or stored separately (offsite).

DISA Rule

SV-222639r508029_rule

Vulnerability Number

V-222639

Group Title

SRG-APP-000516

Rule Version

APSC-DV-003080

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Store a back-up copy of the application software and source code in a fire-rated container or store it separately (offsite) from their respective environments.

Check Contents

When reviewing a COTS or GOTS application, verify that a back-up copy of the software is stored in a fire rated container or is stored separately (offsite) from the operational environment.

Determine if application development is done in-house.

If application development occurs in-house and source code is available, verify a back-up copy of the source code is kept in a fire-rated container or stored offsite from the development environment.

If back-up copies of the application software or source code are not stored in a fire-rated container or stored separately (offsite) from their respective environments, this is a finding.

Vulnerability Number

V-222639

Documentable

False

Rule Version

APSC-DV-003080

Severity Override Guidance

When reviewing a COTS or GOTS application, verify that a back-up copy of the software is stored in a fire rated container or is stored separately (offsite) from the operational environment.

Determine if application development is done in-house.

If application development occurs in-house and source code is available, verify a back-up copy of the source code is kept in a fire-rated container or stored offsite from the development environment.

If back-up copies of the application software or source code are not stored in a fire-rated container or stored separately (offsite) from their respective environments, this is a finding.

Check Content Reference

M

Target Key

4093

Comments