STIGQter: STIG Summary: vRealize - Cassandra Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 05 Jun 2017:

The Cassandra Server must protect the confidentiality and integrity of all information at rest.

DISA Rule

SV-87297r1_rule

Vulnerability Number

V-72665

Group Title

SRG-APP-000231-DB-000154

Rule Version

VROM-CS-002065

Severity

CAT I

CCI(s)

• CCI-001199 - The information system protects the confidentiality and/or integrity of organization-defined information at rest.

Weight

10

Fix Recommendation

Configure the Cassandra Server to protect the confidentiality and integrity of all information at rest.

Implement full disk encryption such as VMcrypt or other third-party full disk encryption that uses FIPS 140-2 validated cryptography.

Check Contents

Review the Cassandra Server configuration to protect the confidentiality and integrity of all information at rest.

Inspect the server configuration to ensure a full disk encryption solution has been implemented. If the disk is unencrypted, this is a finding.

Vulnerability Number

V-72665

Documentable

False

Rule Version

VROM-CS-002065

Severity Override Guidance

Review the Cassandra Server configuration to protect the confidentiality and integrity of all information at rest.

Inspect the server configuration to ensure a full disk encryption solution has been implemented. If the disk is unencrypted, this is a finding.

Check Content Reference

M

Target Key

3179

Comments