Skip to content

Dated: 14-11-2024

Ch03. a Look at Cis Security Benchmarks - part 3

  • CIS Benchmarks example (Network Devices)
    Pasted image 20241114141902.png

  • Control content:

    • Profile applicability (ASA 8.X, ASA 9.X)
    • Description
    • Rationale
    • Audit
    • Remediation
    • Default value
    • References

  • 1.8 (page 88); Session Timeout

    • Profile applicability: Level 1, Cisco ASA9.X
    • Description: Sets the idle timeout for a console session before the security appliance terminates it.
    • Rationale: Limiting session timeout prevents unauthorized users from using abandoned sessions to perform malicious activities.
    • Default Value: The default timeout is 0, which means the console session will not time out.
    • Reference: CLI Book 1: Cisco ASA Series General Operations CLI Configuration Guide, 9.1

Pasted image 20241114141923.png
Pasted image 20241114141928.png

Post Assessment
As per the content description in the related video lecture, there is only one benchmark for _ category of CIS benchmarks.
  • Server Software
  • Desktop Software
  • Cloud Providers
  • Multifunction Print Devices
As per the content description in the related video lecture, overall, there are _ categories of CIS benchmarks.
  • 7
  • 2
  • 5
  • 3
As per the content description in the related video lecture, _ category of CIS benchmarks contains the maximum number of benchmarks.
  • Mobile Devices
  • Server Software
  • Operating Systems
  • Desktop Software
As per the content description in the related video lecture, there are _ benchmarks in the Operating System Category of CIS benchmarks.
  • 6
  • 36
  • 16
  • 26
As per the content description in the related video lecture, there are total _ CIA benchmarks.
  • 100
  • 47
  • 107
  • 99