II - Mission Support Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000516-NDM-000334
Group -
The CA API Gateway must generate audit log events for a locally developed list of auditable events.
Auditing and logging are key components of any security architecture. Logging the actions of specific events provides a means to investigate an attack; to recognize resource utilization or capacity...Rule Medium Severity -
SRG-APP-000516-NDM-000342
Group -
The CA API Gateway must employ automated mechanisms to assist in the tracking of security incidents.
Despite the investment in perimeter defense technologies, enclaves are still faced with detecting, analyzing, and remediating network breaches and exploits that have made it past the network device...Rule Medium Severity -
SRG-APP-000516-NDM-000339
Group -
The CA API Gateway must employ automated mechanisms to detect the addition of unauthorized components or devices.
This requirement addresses configuration management of the network device. The network device must automatically detect the installation of unauthorized software or hardware onto the device itself....Rule Medium Severity -
SRG-APP-000516-NDM-000317
Group -
The CA API Gateway must be installed on Red Hat Enterprise Linux (RHEL) Version 6.7 or higher.
The API Gateway (Appliance version) depends on specific RHEL capabilities for the security, logging, and auditing subsystems. Installation on alternative or older RHEL versions may create vulnerabi...Rule High Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.