From 67dcc82fe4a24635cc8af873d34a3ecf392a97e4 Mon Sep 17 00:00:00 2001 From: sluetze <13255307+sluetze@users.noreply.github.com> Date: Wed, 18 Jun 2025 13:25:19 +0200 Subject: [PATCH] add table for BSI --- modules/compliance-supported-profiles.adoc | 49 +++++++++++++++++++++- 1 file changed, 47 insertions(+), 2 deletions(-) diff --git a/modules/compliance-supported-profiles.adoc b/modules/compliance-supported-profiles.adoc index 818a1d5de9e9..ad0528f61f42 100644 --- a/modules/compliance-supported-profiles.adoc +++ b/modules/compliance-supported-profiles.adoc @@ -113,7 +113,52 @@ The following tables reflect the latest available profiles in the Compliance Ope [id="bsi-profiles_{context}"] == BSI Profile Support -BSI (Bundesamt für Sicherheit in der Informationstechnik, Germany’s Federal Office for Information Security) compliance is legally mandated under Germany’s IT Security Act (IT-Sicherheitsgesetz) for critical infrastructure sectors like energy, healthcare, and telecommunications. With the release of Compliance Operator 1.7.0, BSI compliance checks for Block SYS.1.6 Containerization and Block APP.4.4 Kubernetes are now available. For more information, see link:https://access.redhat.com/articles/7045834[*BSI Quick Check*]. +.Supported BSI compliance profiles +[cols="2,2,1,2,1,2", options="header"] + +|=== +|Profile +|Profile title +|Application +|Industry compliance benchmark +|Supported architectures +|Supported platforms + +|ocp4-bsi ^[1]^ +|BSI IT-Grundschutz (Basic Protection) Building Block SYS.1.6 and APP.4.4 +|Platform +|link:https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Grundschutz/International/bsi_it_gs_comp_2022.pdf[BSI Basic Protection Compendium] +|`x86_64` +| + +|ocp4-bsi-node ^[1]^ +|BSI IT-Grundschutz (Basic Protection) Building Block SYS.1.6 and APP.4.4 +|Node ^[2]^ +|link:https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Grundschutz/International/bsi_it_gs_comp_2022.pdf[BSI Basic Protection Compendium] +|`x86_64` +| + +|ocp4-bsi-2022 ^[3]^ +|BSI IT-Grundschutz (Basic Protection) Building Block SYS.1.6 and APP.4.4 +|Platform +|link:https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Grundschutz/International/bsi_it_gs_comp_2022.pdf[BSI Basic Protection Compendium] +|`x86_64` +| + +|ocp4-bsi-node-2022 ^[3]^ +|BSI IT-Grundschutz (Basic Protection) Building Block SYS.1.6 and APP.4.4 +|Node ^[2]^ +|link:https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Grundschutz/International/bsi_it_gs_comp_2022.pdf[BSI Basic Protection Compendium] +|`x86_64` +| + +|=== +[.small] +1. The `ocp4-bsi` and `ocp4-bsi-node` profiles maintain the most up-to-date version of the BSI Basic Protection Profile as it becomes available in the Compliance Operator. If you want to adhere to a specific version, such as BSI 2022, use the `ocp4-bsi-2022` and `ocp4-bsi-node-2022` profiles. +2. Node profiles must be used with the relevant Platform profile. For more information, see _Compliance Operator profile types_. +3. Edition 2022 is the latest available english edition of BSI IT-Grundschutz (Basic Protection) compendium. There were no changes for Building Blocks SYS.1.6 and APP.4.4 in the latest published german compendium (edition 2023). + +For more information, see link:https://access.redhat.com/articles/7045834[*BSI Quick Check*]. [id="e8-profiles_{context}"] == Essential Eight compliance profiles @@ -362,7 +407,7 @@ BSI (Bundesamt für Sicherheit in der Informationstechnik, Germany’s Federal O |ocp4-pci-dss-node ^[1]^ |PCI-DSS v4 Control Baseline for {product-title} 4 |Node ^[2]^ -|link:https://www.pcisecuritystandards.org/document_library?document=pci_dss[PCI Security Standards ® Council Document Library] +|link:https://www.pcisecuritystandards.org/document_library?document=pci_dss[PCI Security Standards ® Council Document Library] |`x86_64` `ppc64le` |{product-rosa} with {hcp} (ROSA HCP)