STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 3 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Container Platform Security Requirements Guide

V-233063

CAT II (Medium)

The container platform must use FIPS validated cryptographic mechanisms to protect the integrity of log information.

Rule ID

SV-233063r960951_rule

STIG

Container Platform Security Requirements Guide

Version

V2R4

CCIs

CCI-001350

Discussion

To fully investigate an incident and to have trust in the audit data that is generated, it is important to put in place data protections. Without integrity protections, unauthorized changes may be made to the audit files and reliable forensic analysis and discovery of the source of malicious system activity may be degraded. Although digital signatures are one example of protecting integrity, this control is not intended to cause a new cryptographic hash to be generated every time a record is added to a log file. Integrity protections can also be implemented by using cryptographic techniques for security function isolation and file system protections to protect against unauthorized changes.

Check Content

Review the container platform configuration to determine if FIPS-validated cryptographic mechanisms are being used to protect the integrity of log information. 

If FIPS-validated cryptographic mechanisms are not being used to protect the integrity of log information, this is a finding.

Fix Text

Configure the container platform to use FIPS-validated cryptographic mechanisms to protect the integrity of log information.