FIPS-140-2 and CIS compliance for K8ssandra

Hi Everyone,

We want to use k8ssandra operators for federal customers . These will used in managed k8s GKE on google cloud. So we want clarification on k8ssandra compliance and standards part.

  1. Is FIPS-140-2 enabled in the images by default or can it be enabled as additional steps after deployment.

  2. Is cassandra/k8ssandra CIS compliance .

Thank you in advance

1 Like

I believe these are on the roadmap. Let me get an official response for you. Cheers!

Thank you !! We will wait for your response. cheers!!

@venturi What specific aspects of FIPS 140-2 are you looking for k8ssandra to comply with?