Data protection

Azure Service Fabric cluster ‘ClusterProtectionLevel’ parameter value, should be set to ‘EncryptAndSign’

Compliance Frameworks


It was detected that 'ClusterProtectionLevel' security parameter is not configured/configured with value other than recommended. Service Fabric provides three levels of protection (None, Sign and EncryptAndSign) for node-to-node communication using a primary cluster certificate. Set the protection level to ensure that all node-to-node messages are encrypted and digitally signed. For more information, please follow:
  • Recommended Mitigation

    Set the parameter's vaule to be 'EncryptAndSign'.