CMP-2454: Mark Requirement 2.3 as not applicable

These controls document and process the management of wireless environments including their default settings, paswords and encryption keys. Wireless environments and appliances are specific to each deployment and are not managed by OpenShift.
ComplianceAsCode · Apr 22, 2024 · 9c9c71c · 9c9c71c
1 parent 0b1c4c6
commit 9c9c71c
Showing 1 changed file with 10 additions and 5 deletions.
diff --git a/controls/pcidss_4_ocp4.yml b/controls/pcidss_4_ocp4.yml
@@ -545,7 +545,7 @@ controls:
     title: Wireless environments are configured and managed securely.
     levels:
       - base
-    status: pending
+    status: not applicable
     controls:
     - id: 2.3.1
       title: For wireless environments connected to the CDE or transmitting account data, all
@@ -560,9 +560,13 @@ controls:
         - Any other security-related wireless vendor defaults.
       levels:
         - base
-      status: pending
+      status: not applicable
       notes: |-
-        Wireless interfaces are disabled by 1.3.3.
+        The OpenShift Container Platform doesn't manage wireless encryptions keys nor wireless
+        access points passwords.
+      related_rules:
+        # NOTE: (yuumasato): the node OS can explicitly disable wireless interfaces
+        - wireless_disable_interfaces
 
     - id: 2.3.2
       title: For wireless environments connected to the CDE or transmitting account data, wireless
@@ -572,9 +576,10 @@ controls:
         data, wireless encryption keys are changed
       levels:
         - base
-      status: pending
+      status: not applicable
       notes: |-
-        Wireless interfaces are disabled by 1.3.3.
+        The OpenShift Container Platform doesn't manage wireless encryptions keys nor wireless
+        access points passwords.
 
   - id: '3.1'
     title: Processes and mechanisms for protecting stored account data are defined and understood.