STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container runtime must generate audit records for all container execution, shutdown, restart events, and program initiations.

DISA Rule

SV-233270r599691_rule

Vulnerability Number

V-233270

Group Title

SRG-APP-000510

Rule Version

SRG-APP-000510-CTR-001310

Severity

CAT II

CCI(s)

• CCI-000172 - The information system generates audit records for the events defined in AU-2 d. with the content defined in AU-3.

Weight

10

Fix Recommendation

Configure the container runtime to generate audit records for container execution, shutdown, and restart events.

Check Contents

Review the container runtime configuration to validate audit record generation for container execution, shutdown, and restart events.

If the container runtime does not generate records for container execution, shutdown and restart events, this is a finding.

Vulnerability Number

V-233270

Documentable

False

Rule Version

SRG-APP-000510-CTR-001310

Severity Override Guidance

Review the container runtime configuration to validate audit record generation for container execution, shutdown, and restart events.

If the container runtime does not generate records for container execution, shutdown and restart events, this is a finding.

Check Content Reference

M

Target Key

5239

Comments