z/OS ICSF for ACF2 Security Technical Implementation Guide

Description

This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: [email protected]

Details

Version / Release: V6R6

Published: 2021-03-30

Updated At: 2021-05-02 21:05:01

Compare/View Releases

Select any two versions of this STIG to compare the individual requirements

Select any old version/release of this STIG to view the previous requirements

Actions

Download

Filter

Findings
Severity Open Not Reviewed Not Applicable Not a Finding
Overall 0 0 0 0
Low 0 0 0 0
Medium 0 0 0 0
High 0 0 0 0
Drop CKL or SCAP (XCCDF) results here.

    Vuln Rule Version CCI Severity Title Description Status Finding Details Comments
    SV-224323r695254_rule ZICS0040 CCI-000035 MEDIUM IBM Integrated Crypto Service Facility (ICSF) Configuration parameters must be correctly specified. IBM Integrated Crypto Service Facility (ICSF) product has the ability to use privileged functions and/or have access to sensitive data. Failure to properly configure parameter values could potentially the integrity of the base product which could result i
    SV-224324r520390_rule ZICSA000 CCI-000213 MEDIUM IBM Integrated Crypto Service Facility (ICSF) install data sets are not properly protected. IBM Integrated Crypto Service Facility (ICSF) product has the ability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to their data sets could result in violating the integrity of the base product whic
    SV-224325r520393_rule ZICSA001 CCI-001499 MEDIUM IBM Integrated Crypto Service Facility (ICSF) STC data sets must be properly protected. IBM Integrated Crypto Service Facility (ICSF) STC data sets have the ability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to their data sets could result in violating the integrity of the base prod
    SV-224326r520396_rule ZICSA030 CCI-000764 MEDIUM IBM Integrated Crypto Service Facility (ICSF) Started Task name is not properly identified / defined to the system ACP. IBM Integrated Crypto Service Facility (ICSF) requires a started task that will be restricted to certain resources, datasets and other system functions. By defining the started task as a userid to the system ACP, It allows the ACP to control the access an