Title

Development systems must have HIDS or HIPS installed and configured with up-to-date signatures. (Cat II impact)

Discussion

A HIDS or HIPS application is a secondary line of defense behind the antivirus. The application will monitor all ports and the dynamic state of a development system. If the application detects irregularities on the system, it will block incoming traffic that may potentially compromise the development system that can lead to a DoS or data theft.

Check Content

Review the development images to determine whether a HIDS or HIPS application is installed and configured. If a HIDS or HIPS application is not installed and configured on the development image, this is a finding. If there isn't any application development occurring in the zone environment, this requirement is not applicable.

Fix Text

Install and configure a HIDS or HIPS application on development system images.

Additional Identifiers

Rule ID: SV-51296r1_rule

Vulnerability ID: V-39438

Group Title: ENTD0080 - HIDS or HIPS not installed on development system.

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.