Documentation - V-233127

V-233127

Container Platform Security Requirements Guide

CAT II

Title

The container platform must prohibit containers from accessing privileged resources.

Description

<VulnDiscussion>Containers images instantiated within the container platform may request access to host system resources. Access to privileged resources can allow for unauthorized and unintended transfer of information, but in some cases, these resources may be needed for the service being offered by the container. By default, containers should be denied instantiation when privileged system resources are requested and granted only after approval has been given. When access to privileged resourc...

Fix Text (Documentation Requirement)

Configure the container platform to block instantiation of containers requesting access to host system-privileged resources.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel