Skip to content

Container Platform Security Requirements Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • The container platform must record time stamps for audit records that meet a granularity of one second for a minimum degree of precision.

    <VulnDiscussion>To properly investigate an event, it is important to have enough granularity within the time stamps to determine the chronolo...
    Rule Medium Severity
  • SRG-APP-000378

    <GroupDescription></GroupDescription>
    Group
  • The container platform must prohibit the installation of patches and updates without explicit privileged status.

    &lt;VulnDiscussion&gt;Controlling access to those users and roles responsible for patching and updating the container platform reduces the risk of ...
    Rule Medium Severity
  • SRG-APP-000378

    <GroupDescription></GroupDescription>
    Group
  • The container platform runtime must prohibit the instantiation of container images without explicit privileged status.

    &lt;VulnDiscussion&gt;Controlling access to those users and roles responsible for container image instantiation reduces the risk of untested or pot...
    Rule High Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules