III - Administrative Sensitive
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000175
Group -
Digital signatures assigned to strongly named assemblies must be verified.
A strong name consists of the assembly's identity, simple text name, version number, and culture information (if provided)—plus a public key and a digital signature. Strong names serve to identify...Rule Medium Severity -
SRG-APP-000175
Group -
The Trust Providers Software Publishing State must be set to 0x23C00.
Microsoft Windows operating systems provide a feature called Authenticode. Authenticode technology and its underlying code signing mechanisms serve to provide a structure to identify software publ...Rule Medium Severity -
SRG-APP-000175
Group -
Developer certificates used with the .NET Publisher Membership Condition must be approved by the ISSO.
A .Net assembly will satisfy the Publisher Membership Condition if it is signed with a software publisher’s Authenticode X.509v3 digital certificate that can be verified by the Windows operating sy...Rule Medium Severity -
SRG-APP-000176
Group -
Encryption keys used for the .NET Strong Name Membership Condition must be protected.
The Strong Name Membership condition requires that member assemblies be defined with Strong Names. A strong name consists of the assembly's identity, simple text name, version number, and culture i...Rule Medium Severity -
SRG-APP-000120
Group -
CAS and policy configuration files must be backed up.
A successful disaster recovery plan requires that CAS policy and CAS policy configuration files are identified and included in systems disaster backup and recovery events. Documentation regarding t...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules