Are Security Standards Like STIG and FIPS Supported by Linux Products?
search cancel

Are Security Standards Like STIG and FIPS Supported by Linux Products?

book

Article ID: 285839

calendar_today

Updated On:

Products

Carbon Black EDR (formerly Cb Response)

Issue/Introduction

Does Carbon Black EDR support STIG, CIS L3 and FIPS standards for the server and endpoints?

Environment

  • EDR Server: 7.8.0 and Higher
  • EDR Sensor: All Supported Versions
  • Linux OS

Resolution

STIG Support
  • EDR Server (Linux):  No STIG compliance
  • EDR Linux Endpoint: No STIG compliance, but should operate OK in most cases.
  • EDR Windows Endpoint: No STIG compliance

FIPS Support
  • EDR Server (Linux):  YES, supports FIPS 140-2 beginning with version 7.8.0 and higher.  
  • EDR Linux Endpoint: No FIPS support
  • EDR Windows Endpoint: Yes, supported

Additional Information

  • STIG is a cyber security configuration standard 
  • FIPS is a U.S. federal security compliance standard
  • EDR does not complete with CIS L3 hardening
  • Server Hardening is out of scope for the support team
Powered by Wolken Software