Skip to content

IBM DataPower Network Device Management Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • The DataPower Gateway must back up audit records at least every seven days onto a different system or system component than the system or component being audited.

    <VulnDiscussion>Protection of log data includes assuring log data is not accidentally lost or deleted. Regularly backing up audit records to ...
    Rule Low Severity
  • SRG-APP-000131-NDM-000243

    <GroupDescription></GroupDescription>
    Group
  • The DataPower Gateway must prevent the installation of patches, service packs, or application components without verification the software component has been digitally signed using a certificate that is recognized and approved by the organization.

    &lt;VulnDiscussion&gt;Changes to any software components can have significant effects on the overall security of the network device. Verifying soft...
    Rule Medium Severity
  • The DataPower Gateway must limit privileges to change the software resident within software libraries.

    &lt;VulnDiscussion&gt;Changes to any software components of the network device can have significant effects on the overall security of the network....
    Rule Medium Severity
  • SRG-APP-000142-NDM-000245

    <GroupDescription></GroupDescription>
    Group

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules