compliant-financial-infrastructure icon indicating copy to clipboard operation
compliant-financial-infrastructure copied to clipboard

Published 20 hours ago verified publisher icon finos

OCP - SAA - Security Hardening + PCI

Open abdullahgarcia opened this issue 1 year ago • 4 comments

With the new format of the SAA, the MVP will be:

  • Achieve security hardening through CIS Benchmarks.
  • Achieve PCI compliance.

Supporting documents:

  • https://docs-prv.pcisecuritystandards.org/Guidance%20Document/Containers%20and%20Container%20Orchestration%20Tools/Guidance-for-Containers-and-Container-Ochestration-Tools-v1_0.pdf

abdullahgarcia avatar Mar 15 '23 13:03 abdullahgarcia

plan to progress

  • [x] read the PCI doc that Abdulla shared
  • [ ] investigate PCI Policy for [OpenShift Compliance Operator]{https://docs.openshift.com/container-platform/4.12/security/compliance_operator/compliance-operator-supported-profiles.html}
  • [ ] test out PCI policy

AdrianHammond avatar Mar 22 '23 12:03 AdrianHammond

@abdullahgarcia - Hi Abdulla, are you looking for compliance to a minimum version of PCI? PCI v3.2.1 looks to have been replaced by v4.0 in March 2022. Current OCP compliance is against v3.2.1, I am finding out what are plans are to be compliant with PCI v4.0.

AdrianHammond avatar Mar 29 '23 13:03 AdrianHammond

@AdrianHammond , I'll bring up this matter in today's meeting: minimum version of PCI.

abdullahgarcia avatar Apr 19 '23 09:04 abdullahgarcia

PCI-DSS implemented via the OpenShift Compliance Operator and waiting on merge from Dev to Main in https://github.com/finos/ansible-cfi-ocp/tree/dev/ocp

AdrianHammond avatar Nov 14 '23 11:11 AdrianHammond