πΌ 11.5.1 Intrusion-detection and/or intrusion-prevention techniques are used to detect and/or prevent intrusions into the network.
-
Contextual name: πΌ 11.5.1 Intrusion-detection and/or intrusion-prevention techniques are used to detect and/or prevent intrusions into the network.
-
ID:
/frameworks/pci-dss-v4.0/11/05/01 -
Located in: πΌ 11.5 Network intrusions and unexpected file changes are detected and responded to.
Descriptionβ
As follows:
- All traffic is monitored at the perimeter of the CDE.
- All traffic is monitored at critical points in the CDE.
- Personnel are alerted to suspected compromises.
- All intrusion-detection and prevention engines, baselines, and signatures are kept up to date.
Similarβ
- Sections
/frameworks/pci-dss-v3.2.1/11/04/frameworks/pci-dss-v4.0.1/11/05/01
- Internal
- ID:
dec-c-cbfe57d0
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v3.2.1 β πΌ 11.4 Use intrusion-detection and/or intrusion-prevention techniques to detect and/or prevent intrusions into the network. | 1 | 8 | ||
| πΌ PCI DSS v4.0.1 β πΌ 11.5.1 Intrusion-detection and/or intrusion-prevention techniques are used to detect and/or prevent intrusions into the network. | 1 | 8 |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v3.2.1 β πΌ 11.4 Use intrusion-detection and/or intrusion-prevention techniques to detect and/or prevent intrusions into the network. | 1 | 8 | ||
| πΌ PCI DSS v4.0.1 β πΌ 11.5.1 Intrusion-detection and/or intrusion-prevention techniques are used to detect and/or prevent intrusions into the network. | 1 | 8 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ 11.5.1.1 Intrusion-detection and/or intrusion-prevention techniques detect, alert on/prevent, and address covert malware communication channels. | 8 | 8 |
Policies (8)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS VPC Flow Logs are not enabled π’ | 1 | π x1, π’ x5 |
| π Azure Subscription Microsoft Defender For (Managed Instance) Azure SQL Databases is not set to On π’ | 1 | π’ x6 |
| π Azure Subscription Microsoft Defender For App Services is not set to On π’ | 1 | π’ x6 |
| π Azure Subscription Microsoft Defender For Containers is not set to On π’ | 1 | π’ x6 |
| π Azure Subscription Microsoft Defender For Key Vault is not set to On π’ | 1 | π’ x6 |
| π Azure Subscription Microsoft Defender For Servers is not set to On π’ | 1 | π’ x6 |
| π Azure Subscription Microsoft Defender For SQL Servers On Machines is not set to On π’ | 1 | π’ x6 |
| π Azure Subscription Microsoft Defender For Storage is not set to On π’ | 1 | π’ x6 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-1a2f6279 | 1 | |
| βοΈ dec-x-9c041667 | 1 | |
| βοΈ dec-x-9f7d853f | 1 | |
| βοΈ dec-x-52ac4ac0 | 1 | |
| βοΈ dec-x-8535d1ff | 1 | |
| βοΈ dec-x-a00b4ec9 | 1 | |
| βοΈ dec-x-a0471977 | 1 | |
| βοΈ dec-x-fafadacd | 1 |