IBM Aspera Platform 4.2 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
The IBM Aspera Console private/secret cryptographic keys file must be group-owned by root to prevent unauthorized read access.
Private key data is used to prove that the entity presenting a public key certificate is the certificate's rightful owner. Compromise of private key data allows an adversary to impersonate the key ...Rule Medium Severity -
SRG-NET-000512-ALG-000062
Group -
SRG-NET-000333-ALG-000049
Group -
SRG-NET-000131-ALG-000085
Group -
The IBM Aspera Platform must not have unnecessary services and functions enabled.
Information systems are capable of providing a wide variety of functions (capabilities or processes) and services. Some of these functions and services are installed and enabled by default. The org...Rule Medium Severity -
SRG-NET-000339-ALG-000090
Group -
IBM Aspera Console must implement multifactor authentication for remote access to non-privileged accounts such that one of the factors is provided by a device separate from the system gaining access.
For remote access to non-privileged accounts, the purpose of requiring a device that is separate from the information system gaining access for one of the factors during multifactor authentication ...Rule Medium Severity -
SRG-NET-000098-ALG-000056
Group -
The IBM Aspera Console must protect audit information from unauthorized read access.
Auditing and logging are key components of any security architecture. Logging the actions of specific events provides a means to investigate an attack, recognize resource utilization or capacity th...Rule Medium Severity -
SRG-NET-000101-ALG-000059
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.