GPOS SRG: General Purpose Operating System Security Requirements Guide
This General Purpose Operating System (GPOS) Security Requirements Guide (SRG) provides the technical security policies and requirements for applying security concepts to systems. This SRG specifies security requirements for commercial-off-the-shelf (COTS) or government- off-the-shelf (GOTS) general purpose operating systems (GPOSs) in networked environments. An operating system conformant to this SRG may be operated as a server system within a data center or a client system used directly by one or more human users. This guide assumes operation within a single security domain. Cross-domain solution (CDS) and Multi-Level Security (MLS) requirements are beyond the scope of this guide.
-
SRG-OS-000312-GPOS-00122
The operating system must allow operating system admins to pass information to any other operating system admin or user. -
SRG-OS-000312-GPOS-00123
The operating system must allow operating system admins to grant their privileges to other operating system admins. -
SRG-OS-000312-GPOS-00124
The operating system must allow operating system admins to change security attributes on users, the operating system, or the operating systems comp... -
SRG-OS-000324-GPOS-00125
The operating system must prevent nonprivileged users from executing privileged functions to include disabling, circumventing, or altering implemen... -
SRG-OS-000326-GPOS-00126
The operating system must prevent all software from executing at higher privilege levels than users executing the software. -
SRG-OS-000327-GPOS-00127
The operating system must audit the execution of privileged functions. -
SRG-OS-000329-GPOS-00128
The operating system must automatically lock an account until the locked account is released by an administrator when three unsuccessful logon atte... -
SRG-OS-000337-GPOS-00129
The operating system must provide the capability for assigned IMOs/ISSOs or designated SAs to change the auditing to be performed on all operating ... -
SRG-OS-000341-GPOS-00132
The operating system must allocate audit record storage capacity to store at least one week's worth of audit records, when audit records are not im... -
SRG-OS-000342-GPOS-00133
The operating system must offload audit records onto a different system or media from the system being audited.
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.