STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

For accounts using password authentication, the container platform must use FIPS-validated SHA-2 or later protocol to protect the integrity of the password authentication process.

DISA Rule

SV-233096r599509_rule

Vulnerability Number

V-233096

Group Title

SRG-APP-000172

Rule Version

SRG-APP-000172-CTR-000440

Severity

CAT I

CCI(s)

• CCI-000197 - The information system, for password-based authentication, transmits only cryptographically-protected passwords.

Weight

10

Fix Recommendation

Configure the container platform to transmit only encrypted FIPS-validated SHA-2 or later representations of passwords.

Check Contents

Review the documentation and configuration to determine if the container platform enforces the required FIPS-validated encrypt passwords when they are transmitted.

If the container platform is not configured to meet this requirement, this is a finding.

Vulnerability Number

V-233096

Documentable

False

Rule Version

SRG-APP-000172-CTR-000440

Severity Override Guidance

Review the documentation and configuration to determine if the container platform enforces the required FIPS-validated encrypt passwords when they are transmitted.

If the container platform is not configured to meet this requirement, this is a finding.

Check Content Reference

M

Target Key

5239

Comments