Network infrastructure and systems supporting the test and development environment must be registered in a DoD asset management system.

From Test and Development Zone C Security Technical Implementation Guide

Part of ENTD0030 - The test and development infrastructure registered in DoD asset management program.

Associated with IA controls: VIVM-1

SV-51291r1_rule Network infrastructure and systems supporting the test and development environment must be registered in a DoD asset management system.

Vulnerability discussion

An asset management system is used to send out notifications on vulnerabilities in commercial and military information infrastructures as they are discovered. If the organization's assets are not registered with an asset management system, administrators will not be notified of important vulnerabilities such as viruses, denial of service attacks, system weaknesses, back doors, and other potentially harmful situations. Additionally, there will be no way to enter, track, or resolve findings during a review.

Check content

Determine whether all systems and network infrastructure devices supporting the test and development environment are registered in an asset management system. If any systems and network infrastructure devices supporting the test and development environment are not registered in an asset management system, this is a finding.

Fix text

Register the network infrastructure and systems supporting the test and development environment in a DoD asset management program.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer