| STIG ID | Version | Title | Product |
|---|---|---|---|
| SRG-APP-000095-API-001735 | V1R1 | The API Gateway must generate audit records of what type of events occurred. | |
| SRG-APP-000095-API-001740 | V1R1 | The API must monitor the usage of API keys to detect any anomalies. | |
| SRG-APP-000095-API-001745 | V1R1 | The API must generate audit records of what type of events occurred. | |
| SRG-APP-000095-API-001750 | V1R1 | The API must audit rate-limiting events. | |
| SRG-APP-000095-API-001755 | V1R1 | The API Gateway must audit rate limiting events. | |
| SRG-APP-000095-API-001760 | V1R1 | The API Gateway must audit authentication and authorization information. | |
| SRG-APP-000095-API-001765 | V1R1 | The API must audit authentication and authorization information. | |
| SRG-APP-000095-API-001770 | V1R1 | The API Gateway must audit exceptions and errors that occur during the processing. | |
| SRG-APP-000095-API-001775 | V1R1 | The API must audit exceptions and errors that occur during the processing. | |
| SRG-APP-000095-API-001780 | V1R1 | The API Gateway must audit execution time and performance metrics. | |
| SRG-APP-000095-API-001785 | V1R1 | The API must audit execution time and performance metrics. | |
| SRG-APP-000095-API-001790 | V1R1 | The API Gateway must audit request and response details (such as method, URL, headers, body, status, etc.). | |
| SRG-APP-000095-API-001795 | V1R1 | The API must audit request and response details (such as method, URL, headers, body, status, etc.). | |
| SRG-APP-000095-CTR-000170 | V2R3 | All audit records must identify what type of event has occurred within the container platform. | |
| SRG-APP-000095-MFP-000140 | V3R3 | The Mainframe Product must produce audit records containing information to establish what type of events occurred. |