Application Server Security Requirements Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000001
Group -
SRG-APP-000014
Group -
SRG-APP-000015
Group -
The application server must implement cryptography mechanisms to protect the integrity of the remote access session.
Encryption is critical for protection of remote access sessions. If encryption is not being used for integrity, malicious users may gain the ability to modify the application server configuration. ...Rule Medium Severity -
SRG-APP-000016
Group -
SRG-APP-000033
Group -
SRG-APP-000068
Group -
The application server management interface must display the Standard Mandatory DoD Notice and Consent Banner before granting access to the system.
Application servers are required to display the Standard Mandatory DoD Notice and Consent Banner before granting access to the system management interface, providing privacy and security notices co...Rule Medium Severity -
SRG-APP-000069
Group -
The application server management interface must retain the Standard Mandatory DoD Notice and Consent Banner on the screen until users acknowledge the usage conditions and take explicit actions to log on for further access.
To establish acceptance of system usage policy, a click-through banner at the application server management interface logon is required. The banner shall prevent further activity on the application...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.