EPAS-00-004950 - The EDB Postgres Advanced Server must be configured on a platform that has a NIST-certified FIPS 140-2 or 140-3 installation of OpenSSL.

Information

PostgreSQL uses OpenSSL for the underlying encryption layer. It must be installed on an operating system that contains a certified FIPS 140-2 or 140-3 distribution of OpenSSL. For other operating systems, users must obtain or build their own FIPS 140 OpenSSL libraries.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Install PostgreSQL with FIPS-compliant cryptography enabled on an OS found in the CMVP (https://csrc.nist.gov/projects/cryptographic-module-validation-program/validated-modules) or by other means, ensure that FIPS 140-2 or 140-3 certified OpenSSL libraries are used by the DBMS.

Item Details

Audit Name: EnterpriseDB PostgreSQL Advanced Server OS Linux v2r1

Category: IDENTIFICATION AND AUTHENTICATION

Plugin: Unix

Control ID: e95cfaa2885ac0cb857171db16fe313fde702fd840e5eb672d8bbc6037d6ae90

Detections

Analytics

EPAS-00-004950 - The EDB Postgres Advanced Server must be configured on a platform that has a NIST-certified FIPS 140-2 or 140-3 installation of OpenSSL.

Information

Solution

See Also

Item Details