z/OS SRRAUDIT for ACF2 Security Technical Implementation Guide

Overview

Version	Date	Finding Count (2)			Downloads
7	2025-02-24	CAT I (High): 0	CAT II (Medium): 2	CAT III (Low): 0	Excel ↓JSON ↓XML ↓

STIG Description

This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.

Classified	Public	Sensitive
I - Mission Critical Classified	I - Mission Critical Public	I - Mission Critical Sensitive
II - Mission Support Classified	II - Mission Support Public	II - Mission Support Sensitive
III - Administrative Classified	III - Administrative Public	III - Administrative Sensitive

Findings - MAC I - Mission Critical Sensitive

Finding ID	Severity	Title	Description
V-224342		SRRAUDIT installation data sets must be properly protected.	SRRAUDIT installation data sets have the ability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access...
V-224343		SRRAUDIT User data sets are not properly protected.	SRRAUDIT User data sets provide the capability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access t...