System information backups will be created, updated, and protected.

From Windows Server 2008 R2 Domain Controller Security Technical Implementation Guide

Part of System Recovery Backups

Associated with: CCI-000366

SV-32245r1_rule System information backups will be created, updated, and protected.

Vulnerability discussion

Recovery of a damaged or compromised system in a timely basis is difficult without a system information backup. A system backup will usually include sensitive information such as user accounts that could be used in an attack. As a valuable system resource, the system backup should be protected and stored in a physically secure location.

Check content

Interview the SA to determine if system recovery backup procedures are in place that comply with DoD requirements. Any of the following would be a finding: -The site does not maintain emergency system recovery data. -The emergency system recovery data is not protected from destruction and stored in a locked storage container. -The emergency system recovery data has not been updated following the last system modification.

Fix text

Implement backup procedures that comply with the following requirements: -Maintain emergency system recovery data. -The emergency system recovery data is protected from destruction and stored in a locked storage container. -The emergency system recovery data is updated following the last system modification.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer