This document describes the level of compliance that
Google Distributed Cloud has with the CIS Container-Optimized OS Benchmark. The Benchmark is a set of recommendations for configuring instances that use Container-Optimized OS to support a strong security posture.
Versions
This document refers to these versions:
Anthos version
OS version
CIS Container-Optimized OS Benchmark version
CIS level
1.12.0
Milestone 97
v1.0.0
Level 1 Server
Access the benchmark
The Container-Optimized OS CIS Benchmark is available on the CIS website:
Search for CIS Google Container-Optimized OS Benchmark.
Click Download PDF.
Recommendation levels
The following table describes the recommendation levels for the
CIS Container-Optimized OS Benchmark.
Level
Description
Level 1
Recommendations at this level are meant to be applicable to the majority of environments.
Level 2
Extends the Level 1 profile, resulting in a more stringent security environment.
Status of Google Distributed Cloud
The Container-Optimized OS images used with Google Distributed Cloud are hardened to meet the CIS Level 1 - Server profile. All Google Distributed Cloud components pass the recommendations for this level.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-03-05 UTC."],[[["Google Distributed Cloud's Container-Optimized OS images comply with the CIS Level 1 Server profile recommendations for enhanced security."],["The document outlines Google Distributed Cloud's compliance with the CIS Container-Optimized OS Benchmark, version v1.0.0, using Milestone 97 OS version, for Anthos version 1.12.0."],["The CIS Benchmark offers different security recommendation levels, with Level 1 being applicable to most environments, and Level 2 providing even more stringent security."],["The CIS Container-Optimized OS Benchmark PDF is available for download on the CIS website."]]],[]]
