Skip to content
Log In

App SRG: Application Server Security Requirements Guide

This Application Server Security Requirements Guide (SRG) addresses the software framework used to create an application-server implementation, without regard to what the application functions are. The framework is comprised of services such as data connection services, security, transaction support, load balancing, management, and APIs to extend the application server. Specific software technologies used within the application server, e.g., web server, database, auditing system, etc., must meet the requirements for the specific technology SRG and/or STIG.

Scheme
public.cyber.mil /stigs/downloads/
Published by
DoD Cyber Exchange (sponsored by DISA: Defense Information Systems Agency)

  • SRG-APP-000343-CTR-000780

    The container platform must audit the execution of privileged functions.
    Show

  • SRG-APP-000357-CTR-000800

    The container platform must allocate audit record storage capacity in accordance with organization-defined audit record storage requirements.
    Show

  • SRG-APP-000381-CTR-000905

    The container platform must enforce access restrictions and support auditing of the enforcement actions.
    Show

  • SRG-APP-000409-CTR-000990

    The container platform must audit non-local maintenance and diagnostic sessions' organization-defined audit events associated with non-local mainte...
    Show

  • SRG-APP-000450-CTR-001105

    The container platform must implement organization-defined security safeguards to protect system CPU and memory from resource depletion and unautho...
    Show

  • SRG-APP-000492-CTR-001220

    The container platform must generate audit records when successful/unsuccessful attempts to access security objects occur.
    Show

  • SRG-APP-000493-CTR-001225

    The container platform must generate audit records when successful/unsuccessful attempts to access security levels occur.
    Show

  • SRG-APP-000494-CTR-001230

    The container platform must generate audit records when successful/unsuccessful attempts to access categories of information (e.g., classification ...
    Show

  • SRG-APP-000495-CTR-001235

    The container platform must generate audit records when successful/unsuccessful attempts to modify privileges occur.
    Show

  • SRG-APP-000496-CTR-001240

    The container platform must generate audit records when successful/unsuccessful attempts to modify security objects occur.
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules