The container platform must implement NSA-approved cryptography to protect classified information in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-233211 | SRG-APP-000516 | SRG-APP-000416-CTR-001015 | SV-233211r961863_rule | 2024-12-05 | 2 |
| Description |
|---|
| Use of weak or untested encryption algorithms undermines the purposes of utilizing encryption to protect data and images. The container platform must implement cryptographic modules adhering to the higher standards approved by the federal government since this provides assurance they have been tested and validated. |
| ℹ️ Check |
|---|
| Review documentation to verify that the container platform is using NSA-approved cryptography to protect classified data and applications. If the container platform is not using NSA-approved cryptography for classified data and applications, this is a finding. |
| ✔️ Fix |
|---|
| Configure the container platform to utilize NSA-approved cryptography to protect classified information. |