App SRG: Application Server Security Requirements Guide
This Application Server Security Requirements Guide (SRG) addresses the software framework used to create an application-server implementation, without regard to what the application functions are. The framework is comprised of services such as data connection services, security, transaction support, load balancing, management, and APIs to extend the application server. Specific software technologies used within the application server, e.g., web server, database, auditing system, etc., must meet the requirements for the specific technology SRG and/or STIG.
-
SRG-APP-000100-CTR-000195
All audit records must identify any users associated with the event within the container platform. -
SRG-APP-000100-CTR-000200
All audit records must identify any containers associated with the event within the container platform. -
SRG-APP-000109-CTR-000215
-
SRG-APP-000116-CTR-000235
The container platform must use internal system clocks to generate audit record time stamps. -
SRG-APP-000118-CTR-000240
The container platform must protect audit information from any type of unauthorized read access. -
SRG-APP-000119-CTR-000245
The container platform must protect audit information from unauthorized modification. -
SRG-APP-000120-CTR-000250
The container platform must protect audit information from unauthorized deletion. -
SRG-APP-000141-CTR-000315
The container platform must be configured with only essential configurations. -
SRG-APP-000148-CTR-000335
The container platform must uniquely identify and authenticate users. -
SRG-APP-000185-CTR-000490
The container platform must employ strong authenticators in the establishment of non-local maintenance and diagnostic sessions.
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.