πΌ DE.AE-1: A baseline of network operations and expected data flows for users and systems is established and managed
- Contextual name: πΌ DE.AE-1: A baseline of network operations and expected data flows for users and systems is established and managed
- ID:
/frameworks/nist-csf-v1.1/de-ae/01 - Located in: πΌ Anomalies and Events (DE.AE)
Descriptionβ
Empty...
Similarβ
- Sections
/frameworks/iso-iec-27001-2013/12/01/01/frameworks/iso-iec-27001-2013/12/01/02/frameworks/iso-iec-27001-2013/13/01/01/frameworks/iso-iec-27001-2013/13/01/02/frameworks/nist-sp-800-53-r4/ac/04/frameworks/nist-sp-800-53-r4/ca/03/frameworks/nist-sp-800-53-r4/cm/02/frameworks/nist-sp-800-53-r4/si/04
- Internal
- ID:
dec-c-da5758ea
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ ISO/IEC 27001:2013 β πΌ A.12.1.1 Documented operating procedures | ||||
| πΌ ISO/IEC 27001:2013 β πΌ A.12.1.2 Change management | ||||
| πΌ ISO/IEC 27001:2013 β πΌ A.13.1.1 Network controls | ||||
| πΌ ISO/IEC 27001:2013 β πΌ A.13.1.2 Security of network services | ||||
| πΌ NIST SP 800-53 Revision 4 β πΌ AC-4 INFORMATION FLOW ENFORCEMENT | 22 | 1 | 1 | |
| πΌ NIST SP 800-53 Revision 4 β πΌ CA-3 SYSTEM INTERCONNECTIONS | 5 | |||
| πΌ NIST SP 800-53 Revision 4 β πΌ CM-2 BASELINE CONFIGURATION | 7 | 1 | 1 | |
| πΌ NIST SP 800-53 Revision 4 β πΌ SI-4 INFORMATION SYSTEM MONITORING | 24 |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST CSF v2.0 β πΌ ID.AM-03: Representations of the organization's authorized network communication and internal and external network data flows are maintained | 31 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (11)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS Account Multi-Region CloudTrail is not enabled π’ | 1 | π’ x6 |
| π AWS CloudTrail Log File Validation is not enabled π’ | 1 | π’ x6 |
| π AWS S3 Bucket Policy is not set to deny HTTP requests π’ | 1 | π’ x6 |
| π AWS S3 Bucket Versioning is not enabled π’ | 1 | π’ x6 |
| π Azure App Service HTTPS Only configuration is not enabled π’ | 1 | π’ x6 |
| π Azure PostgreSQL Flexible Server connection_throttle.enable Parameter is not set to ON π’ | 1 | π’ x6 |
| π Azure SQL Server Auditing is not enabled π’ | 1 | π’ x6 |
| π Azure SQL Server Auditing Retention is less than 90 days π’ | 1 | π’ x6 |
| π Azure Storage Account Secure Transfer Required is not enabled π’ | 1 | π’ x6 |
| π Azure Storage Blob Logging is not enabled for Read, Write, and Delete requests π’ | 1 | π’ x6 |
| π Azure Storage Queue Logging is not enabled for Read, Write, and Delete requests π’ | 1 | π’ x6 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-36ced3d1 | 1 | |
| βοΈ dec-x-75db76ad | 1 | |
| βοΈ dec-x-89d5ed7a | 1 | |
| βοΈ dec-x-611eaa35 | 1 | |
| βοΈ dec-x-850beea8 | 1 | |
| βοΈ dec-x-b1e1a494 | 1 | |
| βοΈ dec-x-d5fbfc40 | 1 | |
| βοΈ dec-x-d95ea48b | 1 | |
| βοΈ dec-x-db1b7a1b | 1 | |
| βοΈ dec-z-3f480eb5 | 1 |