Container Platform Security Requirements Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000090
Group -
The container platform must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited.
Without the capability to restrict which roles and individuals can select which events are audited, unauthorized personnel may be able to prevent the auditing of critical events. Misconfigured audi...Rule Medium Severity -
SRG-APP-000091
Group -
SRG-APP-000092
Group -
The container platform must initiate session auditing upon startup.
When the container platform is started, container platform components and user services can also be started. It is important that the container platform begin auditing on startup in order to handle...Rule Medium Severity -
SRG-APP-000095
Group -
SRG-APP-000096
Group -
SRG-APP-000097
Group -
All audit records must identify where in the container platform the event occurred.
Within the container platform, audit data can be generated from any of the deployed container platform components. This audit data is important when there are issues, such as security incidents, th...Rule Medium Severity -
SRG-APP-000098
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules