STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform must use FIPS-validated SHA-2 or higher hash function for digital signature generation and verification (non-legacy use).

DISA Rule

SV-233285r599701_rule

Vulnerability Number

V-233285

Group Title

SRG-APP-000610

Rule Version

SRG-APP-000610-CTR-001385

Severity

CAT II

CCI(s)

• CCI-000803 - The information system implements mechanisms for authentication to a cryptographic module that meet the requirements of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance for such authentication.

Weight

10

Fix Recommendation

Configure the container platform to use a FIPS-validated SHA-2 or higher hash function for digital signature generation and verification.

Check Contents

Review the container platform configuration to validate that a FIPS-validated SHA-2 or higher hash function is being used for digital signature generation and verification.

If a FIPS-validated SHA-2 or higher hash function is not being used for digital signature generation and verification, this is a finding.

Vulnerability Number

V-233285

Documentable

False

Rule Version

SRG-APP-000610-CTR-001385

Severity Override Guidance

Review the container platform configuration to validate that a FIPS-validated SHA-2 or higher hash function is being used for digital signature generation and verification.

If a FIPS-validated SHA-2 or higher hash function is not being used for digital signature generation and verification, this is a finding.

Check Content Reference

M

Target Key

5239

Comments