| Vuln ID | Severity | Asset | STIG | Title | Status | Doc Status | Assigned To | Actions |
|---|---|---|---|---|---|---|---|---|
| V-263620 | CAT II | MONT-DB-002 | Database Security Requirements Guide | The DBMS must provide protected storage for crypto... | - | |||
Check TextVerify the DBMS is configured to provide protected storage for cryptographic keys with organization-defined safeguards and/or hardware protected key store. If the DBMS is not configured to provide protected storage for cryptographic keys with organization-defined safeguards and/or hardware protected key store, this is a finding. Fix TextConfigure the DBMS to provide protected storage for cryptographic keys with organization-defined safeguards and/or hardware protected key store. CommentsThe database server can only be accessed by a privileged user, who creates an Afloat Operations Service Desk ticket. Once the Afloat Operations Service Desk confirms the privileged user has the proper credentials, a domain admin account is created for the user and is valid for 14 days. Access to PKI private keys is restricted to privileged users having direct access to the server. Files containing In-transit and at-rest encryption keys are obfuscated.
Source: Montford Point ShipCLIP DB V4R4.ckl
Scan Date: 2026-03-06T12:50:21.809591
Technology Area: Database Review
|
||||||||