STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform must implement NSA-approved cryptography to protect classified information in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.

DISA Rule

SV-233211r599655_rule

Vulnerability Number

V-233211

Group Title

SRG-APP-000516

Rule Version

SRG-APP-000416-CTR-001015

Severity

CAT II

CCI(s)

• CCI-002450 - The information system implements organization-defined cryptographic uses and type of cryptography required for each use in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.

Weight

10

Fix Recommendation

Configure the container platform to utilize NSA-approved cryptography to protect classified information.

Check Contents

Review documentation to verify that the container platform is using NSA-approved cryptography to protect classified data and applications.

If the container platform is not using NSA-approved cryptography for classified data and applications, this is a finding.

Vulnerability Number

V-233211

Documentable

False

Rule Version

SRG-APP-000416-CTR-001015

Severity Override Guidance

Review documentation to verify that the container platform is using NSA-approved cryptography to protect classified data and applications.

If the container platform is not using NSA-approved cryptography for classified data and applications, this is a finding.

Check Content Reference

M

Target Key

5239

Comments