V-233073
SV-233073r1043177_rule
CAT II
The container platform runtime must enforce ports, protocols, and services that adhere to the PPSM CAL.
From: Container Platform Security Requirements Guide (V2R4)
Description
<VulnDiscussion>Ports, protocols, and services within the container platform runtime must be controlled and conform to the PPSM CAL. Those ports, protocols, and services that fall outside the PPSM CAL must be blocked by the runtime. Instructions on the PPSM can be found in DoD Instruction 8551.01 Policy.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
Check Procedure
Review the container platform documentation and deployment configuration to determine which ports and protocols are enabled.
Verify the ports and protocols being used are not prohibited by PPSM CAL in accordance to DoD Instruction 8551.01 Policy and are necessary for the operations and applications.
If any of the ports or protocols is prohibited or not necessary for the operation, this is a finding.
Fix Text
Configure the container platform to disable any ports or protocols that are prohibited by the PPSM CAL and not necessary for the operation.
CCI Reference
CCI-000382- Created
- 2026-04-07 20:08:14
- Last Updated
- 2026-04-07 20:08:14