Mainframe Product Security Requirements Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
The Mainframe Product must implement cryptographic mechanisms to prevent unauthorized modification of all information not cleared for public release at rest on system components outside of organization facilities.
Applications handling data requiring "data at rest" protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest. Selection of a ...Rule High Severity -
SRG-APP-000429
Group -
SRG-APP-000431
Group -
The Mainframe Product must maintain a separate execution domain for each executing process.
Applications can maintain separate execution domains for each executing process by assigning each process a separate address space. Each process has a distinct address space so that communication b...Rule Medium Severity -
SRG-APP-000447
Group -
The Mainframe Product must behave in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.
A common vulnerability of applications is unpredictable behavior when invalid inputs are received. This requirement guards against adverse or unintended system behavior caused by invalid inputs, wh...Rule Medium Severity -
SRG-APP-000450
Group -
SRG-APP-000454
Group -
SRG-APP-000456
Group -
SRG-APP-000472
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.