Detections
Analytics

CIS Kubernetes 1.13 Benchmark v1.4.1 L2

Audit Details

Name: CIS Kubernetes 1.13 Benchmark v1.4.1 L2

Updated: 6/17/2024

Authority: CIS

Plugin: Unix

Revision: 1.12

Estimated Item Count: 12

File Details

Filename: CIS_Kubernetes_v1.4.1_Level_2.audit

Size: 35 kB

MD5: 4cf6256f2ef18e5d517f33ae7d1511a1
SHA256: 909b77fd54b01c72d7715e152be9adbaa4adb638f37cc5c23ac1d3eb564fc405

Audit Changelog

 
Revision 1.12

Jun 17, 2024

Miscellaneous
  • Metadata updated.
Revision 1.11

Apr 12, 2023

Functional Update
  • 1.5.7 Ensure that a unique Certificate Authority is used for etcd
  • 1.6.3 Create network segmentation using Network Policies
  • 1.6.4 Ensure that the seccomp profile is set to docker/default in your pod definitions
  • 1.6.5 Apply Security Context to Your Pods and Containers
  • 1.6.6 Configure Image Provenance using ImagePolicyWebhook admission controller
  • 1.6.7 Configure Network policies as appropriate
  • 1.6.8 Place compensating controls in the form of PSP and RBAC for privileged containers usage - clusterrolebinding
  • 1.6.8 Place compensating controls in the form of PSP and RBAC for privileged containers usage - psp
  • 1.6.8 Place compensating controls in the form of PSP and RBAC for privileged containers usage - rolebinding
  • 1.7.6 Do not admit root containers
  • 1.7.7 Do not admit containers with dangerous capabilities
Miscellaneous
  • Metadata updated.
  • Platform check updated.
Removed
  • CIS_Kubernetes_v1.4.1_Level_2.audit from CIS Kubernetes Benchmark v1.4.1
Revision 1.10

Mar 7, 2023

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.9

Jan 4, 2023

Miscellaneous
  • Metadata updated.
  • Variables updated.
Revision 1.8

Dec 7, 2022

Miscellaneous
  • References updated.
Revision 1.7

Apr 25, 2022

Miscellaneous
  • Metadata updated.
Revision 1.6

Mar 29, 2022

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.5

Jun 17, 2021

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.4

Oct 5, 2020

Functional Update
  • 1.5.7 Ensure that a unique Certificate Authority is used for etcd
  • 1.6.3 Create network segmentation using Network Policies
  • 1.6.4 Ensure that the seccomp profile is set to docker/default in your pod definitions
  • 1.6.5 Apply Security Context to Your Pods and Containers
  • 1.6.6 Configure Image Provenance using ImagePolicyWebhook admission controller
  • 1.6.7 Configure Network policies as appropriate
  • 1.6.8 Place compensating controls in the form of PSP and RBAC for privileged containers usage - clusterrolebinding
  • 1.6.8 Place compensating controls in the form of PSP and RBAC for privileged containers usage - psp
  • 1.6.8 Place compensating controls in the form of PSP and RBAC for privileged containers usage - rolebinding
  • 1.7.6 Do not admit root containers
  • 1.7.7 Do not admit containers with dangerous capabilities
Revision 1.3

Sep 29, 2020

Miscellaneous
  • References updated.