SRG-APP-000095 Controls

STIG IDVersionTitleProduct
SRG-APP-000095-API-001735V1R1The API Gateway must generate audit records of what type of events occurred.Security Requirements Guide - API
SRG-APP-000095-API-001740V1R1The API must monitor the usage of API keys to detect any anomalies.Security Requirements Guide - API
SRG-APP-000095-API-001745V1R1The API must generate audit records of what type of events occurred.Security Requirements Guide - API
SRG-APP-000095-API-001750V1R1The API must audit rate-limiting events.Security Requirements Guide - API
SRG-APP-000095-API-001755V1R1The API Gateway must audit rate limiting events.Security Requirements Guide - API
SRG-APP-000095-API-001760V1R1The API Gateway must audit authentication and authorization information.Security Requirements Guide - API
SRG-APP-000095-API-001765V1R1The API must audit authentication and authorization information.Security Requirements Guide - API
SRG-APP-000095-API-001770V1R1The API Gateway must audit exceptions and errors that occur during the processing.Security Requirements Guide - API
SRG-APP-000095-API-001775V1R1The API must audit exceptions and errors that occur during the processing.Security Requirements Guide - API
SRG-APP-000095-API-001780V1R1The API Gateway must audit execution time and performance metrics.Security Requirements Guide - API
SRG-APP-000095-API-001785V1R1The API must audit execution time and performance metrics.Security Requirements Guide - API
SRG-APP-000095-API-001790V1R1The API Gateway must audit request and response details (such as method, URL, headers, body, status, etc.).Security Requirements Guide - API
SRG-APP-000095-API-001795V1R1The API must audit request and response details (such as method, URL, headers, body, status, etc.).Security Requirements Guide - API
SRG-APP-000095-CTR-000170V2R3All audit records must identify what type of event has occurred within the container platform.Security Requirements Guide - Container Platform
SRG-APP-000095-MFP-000140V3R3The Mainframe Product must produce audit records containing information to establish what type of events occurred.Security Requirements Guide - Mainframe Product
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.