Dragos Platform 2.x Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Dragos Platform must use an Identity Provider (IDP) for authentication and authorization processes.
Enterprise environments make application account management challenging and complex. A manual process for account management functions adds the risk of a potential oversight or other error. A com...Rule Medium Severity -
The Dragos Platform must have notification and audit services installed.
Installing the Knowledge Pack(s) is essential for the Dragos Platform to provide comprehensive security monitoring, compliance, and operational visibility within industrial environments. It enhance...Rule Medium Severity -
The Dragos Platform must be configured to send backup audit records.
Configuring the Dragos Platform to send out backup audit records is a critical best practice for ensuring the security, integrity, and availability of audit data. It supports disaster recovery, reg...Rule Medium Severity -
The Dragos Platform must have disk encryption enabled on a virtual machines (VMs).
Enabling disk encryption on VMs running the Dragos Platform is a critical security measure to protect sensitive data, ensure compliance with regulations, and provide a robust defense against variou...Rule Medium Severity -
Dragos must use FIPS-validated encryption and hashing algorithms to protect the confidentiality and integrity of application configuration files and user-generated data stored or aggregated on the device.
Confidentiality and integrity protections are intended to address the confidentiality and integrity of system information at rest (e.g., network device rule sets) when it is located on a storage de...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.