Skip to main content

πŸ’Ό DE.AE-1: A baseline of network operations and expected data flows for users and systems is established and managed

  • Contextual name: πŸ’Ό DE.AE-1: A baseline of network operations and expected data flows for users and systems is established and managed
  • ID: /frameworks/nist-csf-v1.1/de-ae/01
  • Located in: πŸ’Ό Anomalies and Events (DE.AE)

Description​

Empty...

Similar​

  • Sections
    • /frameworks/iso-iec-27001-2013/12/01/01
    • /frameworks/iso-iec-27001-2013/12/01/02
    • /frameworks/iso-iec-27001-2013/13/01/01
    • /frameworks/iso-iec-27001-2013/13/01/02
    • /frameworks/nist-sp-800-53-r4/ac/04
    • /frameworks/nist-sp-800-53-r4/ca/03
    • /frameworks/nist-sp-800-53-r4/cm/02
    • /frameworks/nist-sp-800-53-r4/si/04
  • Internal
    • ID: dec-c-da5758ea

Similar Sections (Take Policies From)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό ISO/IEC 27001:2013 β†’ πŸ’Ό A.12.1.1 Documented operating procedures
πŸ’Ό ISO/IEC 27001:2013 β†’ πŸ’Ό A.12.1.2 Change management
πŸ’Ό ISO/IEC 27001:2013 β†’ πŸ’Ό A.13.1.1 Network controls1
πŸ’Ό ISO/IEC 27001:2013 β†’ πŸ’Ό A.13.1.2 Security of network services
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό AC-4 INFORMATION FLOW ENFORCEMENT2211
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό CA-3 SYSTEM INTERCONNECTIONS52
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό CM-2 BASELINE CONFIGURATION711
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SI-4 INFORMATION SYSTEM MONITORING24

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό NIST CSF v2.0 β†’ πŸ’Ό ID.AM-03: Representations of the organization's authorized network communication and internal and external network data flows are maintained45

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags

Policies (14)​

PolicyLogic CountFlags
πŸ“ AWS CloudFront Web Distribution Cache Behaviors allow unencrypted traffic 🟒1🟒 x6
πŸ“ AWS CloudTrail Log File Validation is not enabled 🟒1🟒 x6
πŸ“ AWS S3 Bucket Policy is not set to deny HTTP requests 🟒1🟒 x6
πŸ“ AWS S3 Bucket Versioning is not enabled 🟒1🟒 x6
πŸ“ Azure App Service HTTPS Only configuration is not enabled 🟒1🟒 x6
πŸ“ Azure PostgreSQL Flexible Server connection_throttle.enable Parameter is not set to ON 🟒1🟒 x6
πŸ“ Azure SQL Server Auditing is not enabled 🟒1🟒 x6
πŸ“ Azure SQL Server Auditing Retention is less than 90 days 🟒1🟒 x6
πŸ“ Azure Storage Account Secure Transfer Required is not enabled 🟒1🟒 x6
πŸ“ Azure Storage Blob Logging is not enabled for Read, Write, and Delete requests 🟒1🟒 x6
πŸ“ Azure Storage Queue Logging is not enabled for Read, Write, and Delete requests 🟒1🟒 x6
πŸ“ Google Cloud SQL Instance External Authorized Networks do not whitelist all public IP addresses 🟒1🟒 x6
πŸ“ Google GCE Instance has a public IP address 🟒1🟒 x6
πŸ“ Google GCE Network has Firewall Rules which allow unrestricted SSH access from the Internet 🟒1🟒 x6

Internal Rules​

RulePoliciesFlags
βœ‰οΈ dec-x-36ced3d11
βœ‰οΈ dec-x-75db76ad1
βœ‰οΈ dec-x-89d5ed7a1
βœ‰οΈ dec-x-611eaa351
βœ‰οΈ dec-x-791dab131
βœ‰οΈ dec-x-850beea81
βœ‰οΈ dec-x-b1e1a4941
βœ‰οΈ dec-x-d5fbfc401
βœ‰οΈ dec-x-d95ea48b1
βœ‰οΈ dec-x-db1b7a1b1