z/OS TDMF for RACF STIG Version Comparison

There are 1 differences between versions v6 r4 (Jan. 20, 2015) (the "left" version) and v7 r1 (Jan. 30, 2025) (the "right" version).

Check ZTDM0040 was changed between these two versions. Green, underlined text was added, red, struck-out text was removed.

The regular view of the left check and right check may be easier to read.

Title

Transparent Data Migration Facility (TDMF) configuration/parameter/option values are not specified properly.

Check Content

a) Have the a) Have the products system systems programmer display the configuration/parameters control statements used in the current runing running product to define or enable security. b) Verify security. b) Verify the following specifications: Parameter Options: VOLUME SECURITY = YES CHECK TARGET EMPTY = YES Session Options: Volume Security is not available. CHECKTarget|CHKTarget c) If available. CHECKTarget|CHKTarget c) If (b) above is true, there is NO FINDING. d) If no finding. d) If (b) above is untrue, this is a FINDING finding

Discussion

Transparent Data Migration Facility (TDMF) configuration/parameter/option settings control the security and operational characteristics of product. If these setting values are improperly specified, security and operational controls may be weakened. This exposure may threaten the availability of the product applications, and compromise the confidentiality of system and customer data.

Fix

The product systems programmer will verify that any configuration / parameters that are required to control the security of the product are properly configured and syntactically correct. See the required parameters below: Parameter Options: VOLUME SECURITY = YES CHECK TARGET EMPTY = YES Session Options: Volume Security is not available. CHECKTarget|CHKTarget NOTE: The IAO ISSO will ensure that volume resource protection is define defined to the ACP and access to volumes be given to the approiate appropriate personnel.