SC-22-727 Architecture and Provisioning for Name/Address Resolution Service

Architecture and Provisioning for Name/Address Resolution Service

Control ID

SC-22-727

Control Name

Architecture and Provisioning for Name/Address Resolution Service

Control Category

System and Communications Protection

Functional Areas

Protect

Sub-Areas

Enterprise Architecture, Roadmap and Emerging Technology, System Communications Protection

NIST Baseline Level(s)

LOW, MOD, HIGH

NIST Priority

State Implementation Required

Yes

Agency Last Implemented Date

May 20, 2016

Agency Implementation

All components of the Agency's domain name provisioning and resolution services have redundancy in place.

Risk Statement

Information systems fail due to improper fault tolerant or redundant architectures.

Control Description

The information systems that collectively provide name/address resolution service for an organization are fault-tolerant and implement internal/external role separation.

Control Example

A fault-tolerant network infrastructure is in place.

State Implementation

The information systems that collectively provide name/address resolution service for an organization are fault tolerant and implement role separation.

Testing Procedures

Obtain system and communications protection policy; procedures addressing architecture and provisioning for name/address resolution service; access control policy and procedures; NIST Special Publication 800-81; information system design documentation; assessment results from independent, testing organizations; information system configuration settings and associated documentation; other relevant documents or records and ascertain if: (I)the information systems that collectively provide name/address resolution service for an organization are fault tolerant and implement role separation.