An error occurred:

z/OS TDMF for ACF2 STIG Version Comparison

z/OS TDMF for ACF2 Security Technical Implementation Guide

Comparison

There are 2 differences between versions v6 r4 (Jan. 20, 2015) (the "left" version) and v7 r2 (Oct. 1, 2025) (the "right" version).

Check ZTDM0040 was changed between these two versions. Green, underlined text was added, red, struck-out text was removed.

The regular view of the left check and right check may be easier to read.

Text Differences

Title

Transparent Data Migration Facility (TDMF) configuration/parameter/option values are not specified properly.

Check Content

a) Have Have the the products product's system systems programmer display the configuration/parameters control statements used in the current runing running product to define or enable security. b) Verify security. If the following specifications: Parameter keywords specify the values in the Transparent Data Migration Facility (TDMF) security parameter member, this is not a finding. Parameter Options: VOLUME SECURITY = YES CHECK TARGET EMPTY = YES Session Options: Volume Security is not available. CHECKTarget|CHKTarget c) If available. CHECKTarget|CHKTarget (b) above is true, there is NO FINDING. d) If (b) above is untrue, this is a FINDING

Discussion

Transparent Data Migration Facility (TDMF) configuration/parameter/option settings control the security and operational characteristics of product. If these setting values are improperly specified, security and operational controls may be weakened. This exposure may threaten the availability of the product applications, and compromise the confidentiality of system and customer data.

Fix

The product product's systems programmer will verify that any configuration/parameters configuration / parameters that are required to control the security of the product are properly configured and syntactically correct. See correct. Refer to the required parameters below: Parameter Options: VOLUME SECURITY = YES CHECK TARGET EMPTY = YES Session Options: Volume Security is not available. CHECKTarget|CHKTarget NOTE: available. CHECKTarget|CHKTarget Note: The IAO ISSO will ensure that volume resource protection is define defined to the ACP and access to volumes be is given to the approiate appropriate personnel.