The ALG must implement antispoofing mechanisms to prevent adversaries from falsifying the security attributes indicating the successful application of the security process.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-263543	SRG-NET-000735-ALG-000130	SV-263543r981660_rule		Medium

Description

Some attack vectors operate by altering the security attributes of an information system to intentionally and maliciously implement an insufficient level of security within the system. The alteration of attributes leads organizations to believe that a greater number of security functions are in place and operational than have actually been implemented.

STIG	Date
Application Layer Gateway Security Requirements Guide	2024-12-04

Details

Check Text (C-67443r981658_chk)

Verify the ALG is configured to implement antispoofing mechanisms to prevent adversaries from falsifying the security attributes indicating the successful application of the security process.

If the ALG is not configured to implement antispoofing mechanisms to prevent adversaries from falsifying the security attributes indicating the successful application of the security process, this is a finding.

Fix Text (F-67351r981659_fix)

Configure the ALG to implement antispoofing mechanisms to prevent adversaries from falsifying the security attributes indicating the successful application of the security process.