STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform must use TLS 1.2 or greater for secure container image transport from trusted sources.

DISA Rule

SV-233015r599509_rule

Vulnerability Number

V-233015

Group Title

SRG-APP-000014

Rule Version

SRG-APP-000014-CTR-000035

Severity

CAT II

CCI(s)

• CCI-000068 - The information system implements cryptographic mechanisms to protect the confidentiality of remote access sessions.

Weight

10

Fix Recommendation

Configure the container platform to use TLS 1.2 or greater when components communicate internally or externally. The fix ensures that all communication components in the container platform are configured to utilize secure versions of TLS.

Check Contents

Review the container platform configuration to verify that TLS 1.2 or greater is being used for secure container image transport from trusted sources.

If TLS 1.2 or greater is not being used for secure container image transport, this is a finding.

Vulnerability Number

V-233015

Documentable

False

Rule Version

SRG-APP-000014-CTR-000035

Severity Override Guidance

Review the container platform configuration to verify that TLS 1.2 or greater is being used for secure container image transport from trusted sources.

If TLS 1.2 or greater is not being used for secure container image transport, this is a finding.

Check Content Reference

M

Target Key

5239

Comments