search

sig-bsi-grundschutz / content

Security automation content in SCAP, Bash, Ansible, and other formats
https://www.open-scap.org/security-policies/scap-security-guide
Other
7 stars 0 forks source link

APP.4.4.A15 #41

Open sluetze opened 10 months ago

sluetze commented 4 months ago

Applications with very high protection requirements SHOULD use their own Kubernetes clusters or dedicated nodes that are not available for other applications.

This requirement must be implemented organizationally. OpenShift supports implementation and enforcement reproducibly via multi-cluster management (Red Hat Advanced Cluster Management for Kubernetes) and the use of labels (see APP.4.4.A14).

sluetze commented 4 months ago

Applications with very high protection requirements SHOULD use their own Kubernetes clusters or dedicated nodes that are not available for other applications.

rules:
  - general_node_separation