STIGQter: STIG Summary: SDN Controller Security Requirements Guide Version: 1 Release: 2 Benchmark Date: 24 Apr 2020:

The SDN controller must be configured to enable multi-tenant virtual networks to be fully isolated from one another.

DISA Rule

SV-95509r1_rule

Vulnerability Number

V-80799

Group Title

SRG-NET-000512

Rule Version

SRG-NET-000512-SDN-001065

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure the SDN controller to deploy dedicated instances of virtual networks and separate forwarding tables to the provisioned network elements belonging to each tenant.

Check Contents

Review the SDN controller configuration to determine if it is configured to deploy dedicated instances of virtual networks and separate forwarding tables to the provisioned network elements belonging to each tenant.

If the SDN Controller is not configured to enable multi-tenant virtual networks to be fully isolated from one another, this is a finding.

Vulnerability Number

V-80799

Documentable

False

Rule Version

SRG-NET-000512-SDN-001065

Severity Override Guidance

Review the SDN controller configuration to determine if it is configured to deploy dedicated instances of virtual networks and separate forwarding tables to the provisioned network elements belonging to each tenant.

If the SDN Controller is not configured to enable multi-tenant virtual networks to be fully isolated from one another, this is a finding.

Check Content Reference

M

Target Key

3333

Comments