800-53|SI-3(2)

Title

AUTOMATIC UPDATES

Description

The information system automatically updates malicious code protection mechanisms.

Supplemental

Malicious code protection mechanisms include, for example, signature definitions. Due to information system integrity and availability concerns, organizations give careful consideration to the methodology used to carry out automatic updates.

Reference Item Details

Related: SI-8

Category: SYSTEM AND INFORMATION INTEGRITY

Parent Title: MALICIOUS CODE PROTECTION

Family: SYSTEM AND INFORMATION INTEGRITY

Baseline Impact: MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
4.1 Ensure 'Antivirus Update Schedule' is set to download and install updates hourlyPalo_AltoCIS Palo Alto Firewall 6 Benchmark L1 v1.0.0
4.1 Ensure 'Antivirus Update Schedule' is set to download and install updates hourlyPalo_AltoCIS Palo Alto Firewall 7 Benchmark L1 v1.0.0
4.2 Ensure 'Applications and Threats Update Schedule' is set to download and install updates dailyPalo_AltoCIS Palo Alto Firewall 6 Benchmark L1 v1.0.0
4.2 Ensure 'Applications and Threats Update Schedule' is set to download and install updates dailyPalo_AltoCIS Palo Alto Firewall 7 Benchmark L1 v1.0.0
5.7 Ensure 'WildFire Update Schedule' is set to download and install updates every 15 minutesPalo_AltoCIS Palo Alto Firewall 6 Benchmark L1 v1.0.0
5.7 Ensure 'WildFire Update Schedule' is set to download and install updates every 15 minutesPalo_AltoCIS Palo Alto Firewall 7 Benchmark L1 v1.0.0
DTAM016 - McAfee VirusScan must be configured to receive DAT and Engine updates - schedule is dailyWindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM016 - McAfee VirusScan must be configured to receive DAT and Engine updates - schedule is daily.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM016 - McAfee VirusScan must be configured to receive DAT and Engine updates - scheduling enabledWindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM016 - McAfee VirusScan must be configured to receive DAT and Engine updates - scheduling enabled.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
F5BI-AS-000119 - The BIG-IP ASM module must be configured to automatically update malicious code protection mechanisms when providing content filtering to virtual servers.F5DISA F5 BIG-IP Application Security Manager STIG v2r1
JUSX-IP-000026 - The Juniper Networks SRX Series Gateway IDPS must automatically install updates to signature definitions.JuniperDISA Juniper SRX Services Gateway IDPS v1r2
PANW-AG-000065 - The Palo Alto Networks security platform must automatically update malicious code protection mechanisms - Download ActionPalo_AltoDISA STIG Palo Alto ALG v2r3
PANW-AG-000065 - The Palo Alto Networks security platform must automatically update malicious code protection mechanisms - SchedulePalo_AltoDISA STIG Palo Alto ALG v2r3
PANW-IP-000029 - The Palo Alto Networks security platform must automatically install updates to signature definitions, detection heuristics, and vendor-provided rules.Palo_AltoDISA STIG Palo Alto IDPS v2r3
WatchGuard : Gateway AntiVirus - 'Enabled'WatchGuardTNS Best Practice WatchGuard Audit 1.0.0
WatchGuard : IPS Signature Update - 'Enabled'WatchGuardTNS Best Practice WatchGuard Audit 1.0.0