{"id":1886,"date":"2024-08-27T16:21:30","date_gmt":"2024-08-27T16:21:30","guid":{"rendered":"https:\/\/www.tarleton.edu\/security-controls-catalog\/?page_id=1886"},"modified":"2024-09-04T18:19:52","modified_gmt":"2024-09-04T18:19:52","slug":"si-3-malicious-code-protection","status":"publish","type":"page","link":"https:\/\/www.tarleton.edu\/security-controls-catalog\/system-and-information-integrity-si\/si-3-malicious-code-protection\/","title":{"rendered":"SI-3: Malicious Code Protection"},"content":{"rendered":"\n<h1 class=\"wp-block-heading has-large-font-size\">SI-3: Malicious Code Protection<\/h1>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h2 class=\"wp-block-heading\" style=\"font-size:16px\"><strong>NIST Baseline: <\/strong>Low\u00a0<\/h2>\n\n\n\n<h2 class=\"wp-block-heading\" style=\"font-size:16px\"><strong>DIR Required By:<\/strong> &nbsp;07\/20\/2023&nbsp;<\/h2>\n\n\n\n<h2 class=\"wp-block-heading\" style=\"font-size:16px\"><strong>Review Date: &nbsp;<\/strong>08\/22\/2024&nbsp;<\/h2>\n\n\n\n<ul class=\"wp-block-list its-nested-list\">\n<li>All Tarleton State University (Tarleton) information resources use a centrally administered antivirus application\/service\/utility, as determined by the Tarleton Chief Information Security Officer (CISO), to detect and eradicate or quarantine malicious code.&nbsp;\n<ul class=\"wp-block-list\">\n<li>Software&nbsp;safeguarding information resources against malicious code should not be disabled or bypassed.&nbsp;<\/li>\n\n\n\n<li>The software settings that protect information resources against malicious code should not be altered to reduce its effectiveness.&nbsp;<\/li>\n\n\n\n<li>The automatic update frequency of software that safeguards against malicious code shall not be altered to reduce the frequency of updates.&nbsp;<\/li>\n\n\n\n<li>Any exceptions needed to the above must be reviewed and approved by the Tarleton CISO. &nbsp;<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>Tarleton has implemented processes to ensure that antivirus installations are up to date as new releases are available in accordance with organizational configuration management policy and procedures.&nbsp;<\/li>\n\n\n\n<li>Tarleton utilizes the following malicious code protection mechanisms:&nbsp;\n<ul class=\"wp-block-list\">\n<li>Performs periodic scans of the system continuously and real-time scans of files from external sources (i.e. email attachments and shared files) as the files are downloaded, opened, or executed in accordance with organizational policy; and&nbsp;<\/li>\n\n\n\n<li>Whenever malicious activity is detected, the activity is blocked and an alert is sent to the Office of Innovatie Technology Solutions (OITS) Security Team. &nbsp;<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>The Tarleton OITS Security Team reviews the alerts for false positives to minimize potential impact on the university, as needed. &nbsp;<\/li>\n<\/ul>\n\n\n\n<hr class=\"wp-block-separator alignfull has-text-color has-tarleton-purple-color has-alpha-channel-opacity has-tarleton-purple-background-color has-background is-style-wide\"\/>\n\n\n\n<h3 class=\"wp-block-heading has-medium-font-size\"><strong>References\/Additional Resources<\/strong><\/h3>\n\n\n\n<p><a href=\"https:\/\/csrc.nist.gov\/pubs\/sp\/800\/83\/r1\/final\" target=\"_blank\" rel=\"noreferrer noopener\">SP 800-83-1<\/a>&nbsp;<\/p>\n\n\n\n<p><a href=\"https:\/\/csrc.nist.gov\/pubs\/sp\/800\/125\/b\/final\" target=\"_blank\" rel=\"noreferrer noopener\">SP 800-125B<\/a>&nbsp;<\/p>\n\n\n\n<p><a href=\"https:\/\/csrc.nist.gov\/pubs\/sp\/800\/177\/r1\/final\" target=\"_blank\" rel=\"noreferrer noopener\">SP 800-177<\/a>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>SI-3: Malicious Code Protection NIST Baseline: Low\u00a0 DIR Required By: &nbsp;07\/20\/2023&nbsp; Review Date: &nbsp;08\/22\/2024&nbsp; References\/Additional Resources SP 800-83-1&nbsp; SP 800-125B&nbsp; SP 800-177&nbsp;<\/p>\n","protected":false},"author":1,"featured_media":580,"parent":1981,"menu_order":3,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"inline_featured_image":false,"advgb_blocks_editor_width":"","advgb_blocks_columns_visual_guide":"","footnotes":""},"class_list":["post-1886","page","type-page","status-publish","has-post-thumbnail","hentry"],"acf":[],"coauthors":[],"author_meta":{"author_link":"https:\/\/www.tarleton.edu\/security-controls-catalog\/author\/brian-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-3\/","display_name":"brian"},"relative_dates":{"created":"Posted 2 years ago","modified":"Updated 2 years ago"},"absolute_dates":{"created":"Posted on August 27, 2024","modified":"Updated on September 4, 2024"},"absolute_dates_time":{"created":"Posted on August 27, 2024 4:21 pm","modified":"Updated on September 4, 2024 6:19 pm"},"featured_img_caption":"","featured_img":false,"series_order":"","_links":{"self":[{"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/pages\/1886","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/comments?post=1886"}],"version-history":[{"count":0,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/pages\/1886\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/pages\/1981"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/media?parent=1886"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}