Documentation - V-233189

V-233189

Container Platform Security Requirements Guide

CAT II

Title

The container platform must enforce access restrictions and support auditing of the enforcement actions.

Description

<VulnDiscussion>Auditing the enforcement of access restrictions against changes to the container platform helps identify attacks and provides forensic data for investigation for after-the-fact actions. Attempts to change configurations, components, or data maintained by a component (e.g., images in the registry, running containers in the runtime, or keys in the keystore) must be audited. Enforcement actions are the methods or mechanisms used to prevent unauthorized changes to configuration set...

Fix Text (Documentation Requirement)

Configure the container platform to log the enforcement actions used to restrict access associated with changes.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel