[Spike] OS Query Manager and OSqueryd FIPS compliance #41339

qcorporation · 2024-10-21T14:11:05Z

Parent Ticket:

https://github.com/elastic/ingest-dev/issues/4046

Description

Due to the initiative: Elastic Agent and Beats FIPS Compliance, one of the responsibilities of the Deployment and Devices team is to investigate the required development for OSQueryManager and OSQueryd to be inline with the Elastic requirement.

Note: Early understanding is that osqueryd binary is not controlled by Elastic. OSQueryManager pulls the most recent release and incorporates that within its release CI pipeline when packaging the final binary

Spike:

Investigate if osqueryd does have FIPS binary support
Work with the team managing the requirement to see what exceptions are needed if we can not control osqueryd binary
Investigate alternatives, including upstreaming changes, packaging osqueryd separately or any other way to get FIPS compliance

The text was updated successfully, but these errors were encountered:

elasticmachine · 2024-10-21T14:11:07Z

Pinging @elastic/sec-deployment-and-devices (Team:Security-Deployment and Devices)

qcorporation added the Team:Security-Deployment and Devices Deployment and Devices Team in Security Solution label Oct 21, 2024

qcorporation changed the title ~~[Spike] OS Query Manager and OSqueryd FIPS comliance~~ [Spike] OS Query Manager and OSqueryd FIPS compliance Oct 25, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Spike] OS Query Manager and OSqueryd FIPS compliance #41339

[Spike] OS Query Manager and OSqueryd FIPS compliance #41339

qcorporation commented Oct 21, 2024

elasticmachine commented Oct 21, 2024

[Spike] OS Query Manager and OSqueryd FIPS compliance #41339

[Spike] OS Query Manager and OSqueryd FIPS compliance #41339

Comments

qcorporation commented Oct 21, 2024

Parent Ticket:

Description

Spike:

elasticmachine commented Oct 21, 2024