Virtual Machine Manager Security Requirements Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-OS-000464
<GroupDescription></GroupDescription>Group -
The VMM must perform verification of the correct operation of security functions: upon system startup and/or restart; upon command by a user with privileged access; and/or every 30 days.
<VulnDiscussion>Without verification of the security functions, security functions may not operate correctly and the failure may go unnoticed...Rule Medium Severity -
SRG-OS-000447
<GroupDescription></GroupDescription>Group -
The VMM must shut down, restart, and/or notify the system administrator when anomalies in the operation of any security functions are discovered.
<VulnDiscussion>If anomalies are not acted upon, security functions may fail to secure the system. Security function is defined as the hard...Rule Medium Severity -
SRG-OS-000458
<GroupDescription></GroupDescription>Group -
The VMM must generate audit records when successful/unsuccessful attempts to access security objects occur.
<VulnDiscussion>Without generating audit records that are specific to the security and mission needs of the organization, it would be difficu...Rule Medium Severity -
SRG-OS-000460
<GroupDescription></GroupDescription>Group -
The VMM must generate audit records when successful/unsuccessful attempts to access security levels occur.
<VulnDiscussion>Without generating audit records that are specific to the security and mission needs of the organization, it would be difficu...Rule Medium Severity -
SRG-OS-000461
<GroupDescription></GroupDescription>Group -
The VMM must generate audit records when successful/unsuccessful attempts to access categories of information (e.g., classification levels) occur.
<VulnDiscussion>Without generating audit records that are specific to the security and mission needs of the organization, it would be difficu...Rule Medium Severity -
SRG-OS-000462
<GroupDescription></GroupDescription>Group -
The VMM must generate audit records when successful/unsuccessful attempts to modify security levels occur.
<VulnDiscussion>Without generating audit records that are specific to the security and mission needs of the organization, it would be difficu...Rule Medium Severity -
SRG-OS-000466
<GroupDescription></GroupDescription>Group -
The VMM must generate audit records when successful/unsuccessful attempts to delete privileges occur.
<VulnDiscussion>Without generating audit records that are specific to the security and mission needs of the organization, it would be difficu...Rule Medium Severity -
SRG-OS-000467
<GroupDescription></GroupDescription>Group -
The VMM must generate audit records when successful/unsuccessful attempts to delete security levels occur.
<VulnDiscussion>Without generating audit records that are specific to the security and mission needs of the organization, it would be difficu...Rule Medium Severity -
SRG-OS-000468
<GroupDescription></GroupDescription>Group -
The VMM must generate audit records when successful/unsuccessful attempts to delete security objects occur.
<VulnDiscussion>Without generating audit records that are specific to the security and mission needs of the organization, it would be difficu...Rule Medium Severity -
SRG-OS-000470
<GroupDescription></GroupDescription>Group -
The VMM must generate audit records when successful/unsuccessful logon attempts occur.
<VulnDiscussion>Without generating audit records that are specific to the security and mission needs of the organization, it would be difficu...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.