Section 68IAC25-4-2. Intrusion detection  

   (a) Casino licensees shall utilize an intrusion detection system (IDS) in conjunction with an LMGS. The IDS shall be capable of generating an audit trail report reflecting unauthorized attempts to access the wireless network or a connected MGD. At a minimum, the IT department shall review the audit trail report on a weekly basis. Irregular detections must be noted on the report and shall be reported to the executive director or the executive director's designee. The audit trail report is signed and dated by the person reviewing the report.

  (b) Antivirus software shall be deployed on the LMGS to mitigate attacks from known viruses. Logs shall be stored of all virus encounters.

  (c) The IDS shall be deployed on the LMGS, and the resulting logs shall be securely stored.

  (d) Critical components of the LMGS are to be operational in order for the system to operate. The LMGS shall detect and record information regarding the failure or nonoperation of a component within the system. A log of this event shall be generated.

  (e) Audit logs from critical system components and software shall be maintained and shall include the following:

(1) Authorized access, including the following:

(A) The user identification.

(B) The date and time of key events.

(C) The types of events.

(D) The files accessed.

(E) The programs or utilities used.

(2) System alerts or failures, including the following:

(A) Console alerts or messages.

(B) System log exceptions.

(C) Changes to the date or time on the network time server.

(D) Network management alarms.

(E) Alarms raised by the access control system.

(3) Changes to, or attempts to change, system security settings and controls.

(Indiana Gaming Commission; 68 IAC 25-4-2; filed Jan 7, 2016, 8:21 a.m.: 20160203-IR-068150084FRA)