Check: TSS0-OS-000160
IBM z/OS TSS STIG:
TSS0-OS-000160
(in versions v8 r3 through v7 r1)
Title
The IBM z/OS systems requiring data at rest protection must properly employ IBM DS8880 for full disk encryption. (Cat II impact)
Discussion
Information at rest refers to the state of information when it is located on a secondary storage device (e.g., disk drive and tape drive, when used for backups) within an operating system.
Check Content
Determine if IBM's DS880 disks are in use. If they are not in use for systems that require data at rest, this is a finding.
Fix Text
Employ IBM's DS8880 hardware to ensure full disk encryption.
Additional Identifiers
Rule ID: SV-224012r561402_rule
Vulnerability ID: V-224012
Group Title: SRG-OS-000185-GPOS-00079
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
Number | Definition |
---|---|
CCI-001199 |
The information system protects the confidentiality and/or integrity of organization-defined information at rest. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
Number | Title |
---|---|
SC-28 |
Protection Of Information At Rest |