The information system ensures that even if the information system is compromised, that compromise will not affect credentials stored on the authentication device.
The daemon program for pcsc-lite and the MuscleCard framework is pcscd. It is a resource manager that coordinates communications with smart card readers and smart cards and cryptographic tokens connected to the system.
Check
Verify Amazon Linux 2023 is configured so that the "pcscd" service is active with the following command:
$ systemctl is-active pcscd active
If the pcscdservice is not active, this is a finding.
Fix
Configure Amazon Linux 2023 so that the "pcscd" service is active with the following command: