The CJIS (FBI) policy states the following about virtualizing servers that contain CJIS data:
The following additional technical security controls shall be applied in virtual environments where CJI is comingled with non-CJI: 1. Encrypt CJI when stored in a virtualized environment where CJI is comingled with non-CJI or segregate and store unencrypted CJI within its own secure VM. 2. Encrypt network traffic within the virtual environment.
Regarding point #2, would you only be able to accomplish that with NSX?
No comments:
Post a Comment