STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform, for PKI-based authentication, must implement a local cache of revocation data to support path discovery and validation in case of the inability to access revocation information via the network.

DISA Rule

SV-233201r599649_rule

Vulnerability Number

V-233201

Group Title

SRG-APP-000401

Rule Version

SRG-APP-000401-CTR-000965

Severity

CAT II

CCI(s)

• CCI-001991 - The information system, for PKI-based authentication, implements a local cache of revocation data to support path discovery and validation in case of inability to access revocation information via the network.

Weight

10

Fix Recommendation

Configure the container platform to implement a local cache of revocation data to support path discovery and validation in case of the inability to access revocation information via the network.

Check Contents

Review the container platform configuration.

If the container platform is not implemented to use a local cache of revocation data to support path discovery and validation in case of the inability to access revocation information via the network, this is a finding.

Vulnerability Number

V-233201

Documentable

False

Rule Version

SRG-APP-000401-CTR-000965

Severity Override Guidance

Review the container platform configuration.

If the container platform is not implemented to use a local cache of revocation data to support path discovery and validation in case of the inability to access revocation information via the network, this is a finding.

Check Content Reference

M

Target Key

5239

Comments