| STIG ID | Version | Title | Product |
|---|---|---|---|
| SRG-APP-000435-API-000995 | V1R1 | The API must use a gateway. | Security Requirements Guide - API |
| SRG-APP-000435-CTR-001070 | V2R4 | The container platform must protect against or limit the effects of all types of denial-of-service (DoS) attacks by employing organization-defined security safeguards. | Security Requirements Guide - Container Platform |
| SRG-APP-000435-DNS-000084 | V4R2 | NSEC3 must be used for all internal DNS zones. | Security Requirements Guide - Domain Name Service |
| SRG-APP-000435-DNS-000087 | V4R2 | All authoritative name servers for a zone must be located on different network segments. | Security Requirements Guide - Domain Name Service |
| SRG-APP-000435-DNS-000027 | V4R2 | All authoritative name servers for a zone must be geographically disbursed. | Security Requirements Guide - Domain Name Service |
| SRG-APP-000435-DNS-000047 | V4R2 | The DNS implementation must prohibit recursion on authoritative name servers. | Security Requirements Guide - Domain Name Service |
| SRG-APP-000435-WSR-000147 | V4R4 | The web server must be protected from being stopped by a non-privileged user. | Security Requirements Guide - Web Server |
| SRG-APP-000435-WSR-000148 | V4R4 | The web server must be tuned to handle the operational requirements of the hosted application. | Security Requirements Guide - Web Server |