Skip to content
Log In

II - Mission Support Classified

Rules and Groups employed by this XCCDF Profile

  • The DataPower Gateway must prohibit the use of cached authenticators after an organization-defined time period.

    Some authentication implementations can be configured to use cached authenticators. If cached authentication information is out-of-date, the validity of the authentication information may be quest...
    Rule Medium Severity
    Show

  • SRG-APP-000411-NDM-000330

    Group
    Show

  • The IBM DataPower Gateway must only allow the use of protocols that implement cryptographic mechanisms to protect the integrity and confidentiality of management communications.

    This requires the use of secure protocols instead of their unsecured counterparts, such as SSH instead of telnet, SCP instead of FTP, and HTTPS instead of HTTP. If unsecured protocols (lacking cryp...
    Rule Medium Severity
    Show

  • SRG-APP-000515-NDM-000325

    Group
    Show

  • The DataPower Gateway must off-load audit records onto a different system or media than the system being audited.

    Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common process in information systems with limited audit storage capacity.
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules