The container platform must record time stamps for audit records that meet a granularity of one second for a minimum degree of precision.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-233182 | SRG-APP-000375-CTR-000870 | SV-233182r961446_rule | CCI-001889 | medium |
| Description | ||||
| To properly investigate an event, it is important to have enough granularity within the time stamps to determine the chronological order of the audited events. Without this granularity, events may be interpreted out of proper sequence, thus hobbling the investigation or causing the investigation to come to inaccurate conclusions. Time stamps generated by the container platform include date and time. Granularity of time measurements refers to the degree of synchronization between information system clocks and reference clocks. | ||||
| STIG | Date | |||
| Container Platform Security Requirements Guide | 2025-05-15 | |||
Related Frameworks
3 paths across 3 frameworks
Related Frameworks
NIST 800-531 mapping
AU-8
1.00
- DISA · 2 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1711 mapping
3.3.7
1.00
- DISA · 2 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-001889
1.00
- DISA · 2 · disa_xccdf · related
Details
Check Text (C-233182r961446_chk)
Review the container platform documentation and configuration files to determine if time stamps for log records meet a granularity of one second.
If the time stamp cannot generate to a one-second granularity, this is a finding.
Fix Text (F-36086r601034_fix)
Configure the container platform to use time stamps for log records that can meet a granularity of one second.