No profile (default benchmark)
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000502
Group -
The container platform must generate audit records when successful/unsuccessful attempts to delete categories of information (e.g., classification levels) occur.
Without generating audit records that are specific to the security and mission needs of the organization, it would be difficult to establish, correlate, and investigate the events relating to an in...Rule Medium Severity -
SRG-APP-000503
Group -
The container platform must generate audit records when successful/unsuccessful logon attempts occur.
The container platform and its components must generate audit records when successful and unsuccessful logon attempts occur. The information system can determine if an account is compromised or is ...Rule Medium Severity -
SRG-APP-000504
Group -
The container platform must generate audit record for privileged activities.
The container platform components will generate audit records for privilege activities and container platform runtime, registry, and keystore must generate access audit records to detect possible m...Rule Medium Severity -
SRG-APP-000505
Group -
The container platform audit records must record user access start and end times.
The container platform must generate audit records showing start and end times for users and services acting on behalf of a user accessing the registry and keystore. These components must use the s...Rule Medium Severity -
SRG-APP-000506
Group -
The container platform must generate audit records when concurrent logons from different workstations and systems occur.
The container platform and its components must generate audit records for concurrent logons from workstations perform remote maintenance, runtime instances, connectivity to the container registry, ...Rule Medium Severity -
SRG-APP-000507
Group -
The container platform runtime must generate audit records when successful/unsuccessful attempts to access objects occur.
Container platform runtime objects are defined as configuration files, code, etc. This provides the ability to configure resources and software parameters prior to image execution from the containe...Rule Medium Severity -
SRG-APP-000508
Group -
Direct access to the container platform must generate audit records.
Direct access to the container platform and its components must generate audit records. All the components must use the same standard so that the events can be tied together to understand what took...Rule Medium Severity -
SRG-APP-000509
Group -
The container platform must generate audit records for all account creations, modifications, disabling, and termination events.
Without generating audit records that are specific to the security and mission needs of the organization, it would be difficult to establish, correlate, and investigate the events relating to an in...Rule Medium Severity -
SRG-APP-000510
Group -
The container runtime must generate audit records for all container execution, shutdown, restart events, and program initiations.
The container runtime must generate audit records that are specific to the security and mission needs of the organization. Without audit record, it would be difficult to establish, correlate, and i...Rule Medium Severity -
SRG-APP-000514
Group -
The container platform must use a valid FIPS 140-2 approved cryptographic modules to generate hashes.
The cryptographic module used must have at least one validated hash algorithm. This validated hash algorithm must be used to generate cryptographic hashes for all cryptographic security function wi...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.