z/OS ROSCOE for TSS Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-OS-000309
Group -
Resouce Class ROSRES is not defined or active in the ACP.
Failure to use a robust ACP to control a product could potentially compromise the integrity and availability of the MVS operating system and user data.Rule Medium Severity -
SRG-OS-000018
Group -
ROSCOE configuration/parameter values are not specified properly.
Product configuration/parameters control the security and operational characteristics of products. If these parameter values are improperly specified, security and operational controls may be weak...Rule Medium Severity -
ROSCOE STC data sets are not properly protected.
ROSCOE STC data sets provide the capability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to their data sets could result in violating the in...Rule Medium Severity -
ROSCOE Started Task name is not properly identified / defined to the system ACP.
Products that require a started task will require that the started task be restricted to certain resources, datasets and other system functions. By defining the started task as a userid to the syst...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules