1.3.1 Ensure 'Image Integrity' is correct

Information

Verifies integrity of an uploaded software before upgrading the system

Rationale:

Sometimes, manipulating software from downloading them from the Cisco.com website to uploading them in the security appliance can modify the software, mostly when the copy has not been properly performed or the software has transited into malware infected machines. For an upgrade to be performed without downtime, the image integrity should be verified.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Download a new image from the Cisco.com website and apply the audit procedure until obtaining the message 'VERIFIED' at the end of the output.

See Also

https://workbench.cisecurity.org/files/1903

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-2c., CSCv7|11.4

Plugin: Cisco

Control ID: 78e2904e0b4fe599d3efb174aacf675a989b54410606da279e17665ec31bbabd