STIGQter STIGQter: STIG Summary: SDN Using NV Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 27 Feb 2017:

Southbound API management plane traffic for provisioning and configuring virtual network elements within the SDN infrastructure must be authenticated using a FIPS-approved message authentication code algorithm.

DISA Rule

SV-87735r1_rule

Vulnerability Number

V-73083

Group Title

NET-SDN-006

Rule Version

NET-SDN-006

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure these components to use a FIPS-approved message authentication code algorithm to authenticate southbound API management messages.

Check Contents

Verify that all southbound API management plane traffic is authenticated using a FIPS-approved message authentication code algorithm.

Review SDN management and orchestration systems, as well as all hypervisor hosts that compose the NVP framework, to determine if a FIPS-approved message authentication code algorithm is used to ensure the authenticity and integrity of messages used to deploy and configure software-defined network elements.

If southbound API management plane traffic is not authenticated using a FIPS-approved message authentication code algorithm, this is a finding.

Vulnerability Number

V-73083

Documentable

False

Rule Version

NET-SDN-006

Severity Override Guidance

Verify that all southbound API management plane traffic is authenticated using a FIPS-approved message authentication code algorithm.

Review SDN management and orchestration systems, as well as all hypervisor hosts that compose the NVP framework, to determine if a FIPS-approved message authentication code algorithm is used to ensure the authenticity and integrity of messages used to deploy and configure software-defined network elements.

If southbound API management plane traffic is not authenticated using a FIPS-approved message authentication code algorithm, this is a finding.

Check Content Reference

M

Target Key

3089

Comments