Application Security and Development Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
The application must use the NotOnOrAfter condition when using the SubjectConfirmation element in a SAML assertion.
<VulnDiscussion>SAML is a standard for exchanging authentication and authorization data between security domains. SAML uses security tokens ...Rule High Severity -
SRG-APP-000014
<GroupDescription></GroupDescription>Group -
The application must use both the NotBefore and NotOnOrAfter elements or OneTimeUse element when using the Conditions element in a SAML assertion.
<VulnDiscussion>SAML is a standard for exchanging authentication and authorization data between security domains. SAML uses security tokens ...Rule High Severity -
SRG-APP-000014
<GroupDescription></GroupDescription>Group -
The application must provide automated mechanisms for supporting account management functions.
<VulnDiscussion>Enterprise environments make application account management challenging and complex. A manual process for account management ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules