This is not the latest version of the STIG. This is provided for archival purposes. See the latest STIG.

The container platform must provide protected storage for cryptographic keys with organization-defined safeguards and/or hardware protected key store.

STIG ID: SRG-APP-000915-CTR-000310  |  SRG: SRG-APP-000915 |  Severity: medium (CAT II)  |  CCI: CCI-004910 |  Vulnerability Id: V-263600

Vulnerability Discussion

A Trusted Platform Module (TPM) is an example of a hardware-protected data store that can be used to protect cryptographic keys.

Check

Verify the container platform is configured to provide protected storage for cryptographic keys with organization-defined safeguards and/or hardware protected key store.

If the container platform is not configured to provide protected storage for cryptographic keys with organization-defined safeguards and/or hardware protected key store, this is a finding.

Fix

Configure the container platform to provide protected storage for cryptographic keys with organization-defined safeguards and/or hardware protected key store.
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.