SI-4(13)

  • Requirement

    1. Analyze communications traffic and event patterns for the system;
    2. Develop profiles representing common traffic and event patterns; and
    3. Use the traffic and event profiles in tuning system-monitoring devices.
  • Discussion

    Identifying and understanding common communications traffic and event patterns help organizations provide useful information to system monitoring devices to more effectively identify suspicious or anomalous traffic and events when they occur. Such information can help reduce the number of false positives and false negatives during system monitoring.

More Info

  • Title

    System Monitoring | Analyze Traffic and Event Patterns
  • Family

    System and Information Integrity
  • NIST 800-53B Baseline(s)

    • Related NIST 800-53 ID

    NIST 800-53A Assessment Guidance

    CMMC Training

    Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!