Navigate

Check: SRG-OS-000185-VMM-000720

Virtual Machine Manager SRG: SRG-OS-000185-VMM-000720 (in versions v2 r2 through v1 r3)

Title

The VMM must protect the confidentiality and integrity of all information at rest. (Cat II impact)

Discussion

Information at rest refers to the state of information when it is located on a secondary storage device (e.g., disk drive and tape drive, when used for backups) within a VMM. This requirement addresses protection of user-generated data, as well as VMM-specific configuration data. Organizations may choose to employ different mechanisms to achieve confidentiality and integrity protections, as appropriate, in accordance with the security category and/or classification of the information.

Check Content

Verify the VMM protects the confidentiality and integrity of all information at rest. If it does not, this is a finding.

Fix Text

Configure the VMM to protect the confidentiality and integrity of all information at rest.

Additional Identifiers

Rule ID: SV-207407r958552_rule

Vulnerability ID: V-207407

Group Title: SRG-OS-000185

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-001199	Protects the confidentiality and/or integrity of organization-defined information at rest.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
SC-28	Protection of Information at Rest