800-53|SC-7(9)

Title

RESTRICT THREATENING OUTGOING COMMUNICATIONS TRAFFIC

Description

The information system:

Supplemental

Detecting outgoing communications traffic from internal actions that may pose threats to external information systems is sometimes termed extrusion detection. Extrusion detection at information system boundaries as part of managed interfaces includes the analysis of incoming and outgoing communications traffic searching for indications of internal threats to the security of external systems. Such threats include, for example, traffic indicative of denial of service attacks and traffic containing malicious code.

Reference Item Details

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Related: AU-2,AU-6,SC-38,SC-44,SI-3,SI-4

Category: SYSTEM AND COMMUNICATIONS PROTECTION

Parent Title: BOUNDARY PROTECTION

Family: SYSTEM AND COMMUNICATIONS PROTECTION

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
3.3.3 directed_broadcast	Unix	CIS IBM AIX 7.1 L1 v2.1.0
4.2.3 directed_broadcast	Unix	CIS IBM AIX 7.2 L1 v1.1.0
8.1 Ensure 'SSL Forward Proxy Policy' for traffic destined to the Internet is configured - Invalid Categories	Palo_Alto	CIS Palo Alto Firewall 6 Benchmark L1 v1.0.0
8.1 Ensure 'SSL Forward Proxy Policy' for traffic destined to the Internet is configured - Invalid Categories	Palo_Alto	CIS Palo Alto Firewall 7 Benchmark L1 v1.0.0
9.1.3 Ensure 'Windows Firewall: Domain: Outbound connections' is set to 'Allow (default)'	Windows	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
9.1.3 Ensure 'Windows Firewall: Domain: Outbound connections' is set to 'Allow (default)'	Windows	CIS Windows 7 Workstation Level 1 v3.2.0
9.2.3 Ensure 'Windows Firewall: Private: Outbound connections' is set to 'Allow (default)'	Windows	CIS Windows 7 Workstation Level 1 v3.2.0
9.2.3 Ensure 'Windows Firewall: Private: Outbound connections' is set to 'Allow (default)'	Windows	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
9.3.3 Ensure 'Windows Firewall: Public: Outbound connections' is set to 'Allow (default)'	Windows	CIS Windows 7 Workstation Level 1 v3.2.0
9.3.3 Ensure 'Windows Firewall: Public: Outbound connections' is set to 'Allow (default)'	Windows	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
Outbound Connections - Domain Profile	Windows	MSCT Windows 10 v22H2 v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows 10 1903 v1.19.9
Outbound Connections - Domain Profile	Windows	MSCT Windows 10 1909 v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server 2016 MS v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server 2019 MS v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows 10 v1507 v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server v1909 MS v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server v2004 DC v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server 2019 DC v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT MSCT Windows Server 2022 DC v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server v20H2 MS v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server 2012 R2 DC v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server 2012 R2 MS v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server v20H2 DC v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows 10 v21H1 v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows 11 v23H2 v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows 11 v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows 10 v2004 v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server 2022 v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows 10 v20H2 v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows 10 v21H2 v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows 11 v22H2 v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server 1903 DC v1.19.9
Outbound Connections - Domain Profile	Windows	MSCT Windows Server 1903 MS v1.19.9
Outbound Connections - Domain Profile	Windows	MSCT Windows Server v1909 DC v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server v2004 MS v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows 10 1809 v1.0.0
Outbound Connections - Domain Profile	Windows	MSCT Windows Server 2016 DC v1.0.0
Outbound Connections - DomainProfile	Windows	MSCT Windows 10 1803 v1.0.0
Outbound Connections - Private Profile	Windows	MSCT Windows Server v2004 MS v1.0.0
Outbound Connections - Private Profile	Windows	MSCT Windows Server 2012 R2 MS v1.0.0
Outbound Connections - Private Profile	Windows	MSCT Windows 10 1903 v1.19.9
Outbound Connections - Private Profile	Windows	MSCT Windows Server v20H2 MS v1.0.0
Outbound Connections - Private Profile	Windows	MSCT Windows Server 1903 MS v1.19.9
Outbound Connections - Private Profile	Windows	MSCT Windows Server v1909 MS v1.0.0
Outbound Connections - Private Profile	Windows	MSCT Windows Server v2004 DC v1.0.0
Outbound Connections - Private Profile	Windows	MSCT Windows Server 2016 DC v1.0.0
Outbound Connections - Private Profile	Windows	MSCT Windows 10 v21H2 v1.0.0
Outbound Connections - Private Profile	Windows	MSCT Windows 11 v23H2 v1.0.0
Outbound Connections - Private Profile	Windows	MSCT Windows 10 v21H1 v1.0.0

Detections

Analytics