Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Oracle Linux 7
System Settings
Installing and Maintaining Software
System and Software Integrity
Operating System Vendor Support and Certification
Operating System Vendor Support and Certification
An XCCDF Group - A logical subset of the XCCDF Benchmark
Details
Profiles
Prose
Operating System Vendor Support and Certification
2 Rules
The assurance of a vendor to provide operating system support and maintenance for their product is an important criterion to ensure product stability and security over the life of the product. A certified product that follows the necessary standards and government certification requirements guarantees that known software vulnerabilities will be remediated, and proper guidance for protecting and securing the operating system will be given.
The Installed Operating System Is FIPS 140-2 Certified
High Severity
To enable processing of sensitive information the operating system must provide certified cryptographic modules compliant with FIPS 140-2 standard.
The Installed Operating System Is Vendor Supported
High Severity
The installed operating system must be maintained by a vendor. Oracle Linux is supported by Oracle Corporation. As the Oracle Linux vendor, Oracle Corporation is responsible for providing security patches.