Jim Laurent posts on the vetting of Oracle SPARC SuperCluster under the terms of the Defense Department's Security Technical Implementation Guides (STIGs). Laurent reports on the process of configuring a SPARC SuperCluster in terms of DoD security guidance, which confirmed both the functionality and performance of the system. He provides a link from which readers can download the Oracle white paper: "Oracle SPARC SuperCluster Security Technical Implementation Guide (STIG) Validation and Best Practices on the Database Servers." Laurent also mentions that, although there is no Defense Information Systems Agency (DISA) STIG documentation for Solaris 11 (though one is in process), the DISA Field Security Office says the absence of a DISA written STIG alone should not prevent a product from being used.
Best Practices for Securely Deploying the SPARC SuperCluster T4-4
Read More ...