STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform must be built from verified packages.

DISA Rule

SV-233064r599551_rule

Vulnerability Number

V-233064

Group Title

SRG-APP-000131

Rule Version

SRG-APP-000131-CTR-000280

Severity

CAT II

CCI(s)

• CCI-001749 - The information system prevents the installation of organization-defined software components without verification the software component has been digitally signed using a certificate that is recognized and approved by the organization.

Weight

10

Fix Recommendation

Rebuild the container platform from verified packages that are digitally signed by known and approved sources.

Check Contents

Review the container platform configuration to verify it has been built from packages that are digitally signed by known and approved sources.

If the container platform was built from packages that are not digitally signed or are from unknown or non-approved sources, this is a finding.

Vulnerability Number

V-233064

Documentable

False

Rule Version

SRG-APP-000131-CTR-000280

Severity Override Guidance

Review the container platform configuration to verify it has been built from packages that are digitally signed by known and approved sources.

If the container platform was built from packages that are not digitally signed or are from unknown or non-approved sources, this is a finding.

Check Content Reference

M

Target Key

5239

Comments