STIGQter: STIG Summary: Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 10 Mar 2021:

The Ubuntu operating system must accept Personal Identity Verification (PIV) credentials.

DISA Rule

SV-238231r653868_rule

Vulnerability Number

V-238231

Group Title

SRG-OS-000376-GPOS-00161

Rule Version

UBTU-20-010064

Severity

CAT II

CCI(s)

• CCI-001953 - The information system accepts Personal Identity Verification (PIV) credentials.

Weight

10

Fix Recommendation

Configure the Ubuntu operating system to accept PIV credentials.

Install the "opensc-pkcs11" package using the following command:

$ sudo apt-get install opensc-pkcs11

Check Contents

Verify the Ubuntu operating system accepts PIV credentials.

Verify the "opensc-pcks11" package is installed on the system with the following command:

$ dpkg -l | grep opensc-pkcs11

ii opensc-pkcs11:amd64 0.15.0-1Ubuntu1 amd64 Smart card utilities with support for PKCS#15 compatible cards

If the "opensc-pcks11" package is not installed, this is a finding.

Vulnerability Number

V-238231

Documentable

False

Rule Version

UBTU-20-010064

Severity Override Guidance

Verify the Ubuntu operating system accepts PIV credentials.

Verify the "opensc-pcks11" package is installed on the system with the following command:

$ dpkg -l | grep opensc-pkcs11

ii opensc-pkcs11:amd64 0.15.0-1Ubuntu1 amd64 Smart card utilities with support for PKCS#15 compatible cards

If the "opensc-pcks11" package is not installed, this is a finding.

Check Content Reference

M

Target Key

5318

Comments