STIGQter: STIG Summary: CA API Gateway ALG Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 28 Apr 2017:

The CA API Gateway providing content filtering must generate an alert to, at a minimum, the ISSO and ISSM when user-level intrusions that provide non-privileged access are detected.

DISA Rule

SV-86081r1_rule

Vulnerability Number

V-71457

Group Title

SRG-NET-000392-ALG-000147

Rule Version

CAGW-GW-000800

Severity

CAT III

CCI(s)

• CCI-002664 - The information system alerts organization-defined personnel or roles when organization-defined compromise indicators reflect the occurrence of a compromise or a potential compromise.

Weight

10

Fix Recommendation

Open the CA API Gateway - Policy Manager and double-click the Registered Services requiring email notifications for user-level intrusions that did not have the "Send Email Alert" Assertion included.

Add the "Send Email Alert" Assertion to the policy and configure as per organizational requirements.

Check Contents

Open the CA API Gateway - Policy Manager and double-click any of the Registered Services requiring email notifications for user-level intrusions.

Verify the "Send Email Alert" Assertion has been included in the policy as per organizational requirements.

If it is not present, this is a finding.

Vulnerability Number

V-71457

Documentable

False

Rule Version

CAGW-GW-000800

Severity Override Guidance

Open the CA API Gateway - Policy Manager and double-click any of the Registered Services requiring email notifications for user-level intrusions.

Verify the "Send Email Alert" Assertion has been included in the policy as per organizational requirements.

If it is not present, this is a finding.

Check Content Reference

M

Target Key

3049

Comments