Skip to content

CA IDMS Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-APP-000225-DB-000153

    <GroupDescription></GroupDescription>
    Group
  • IDMS executing in a local mode batch environment must be able to manually recover or restore database areas affected by failed transactions.

    &lt;VulnDiscussion&gt;Local mode update jobs can either use local mode journaling or perform a backup of the database prior to executing the local ...
    Rule Low Severity
  • SRG-APP-000233-DB-000124

    <GroupDescription></GroupDescription>
    Group
  • CA IDMS must isolate the security manager to which users, groups, roles are assigned authorities/permissions to resources.

    &lt;VulnDiscussion&gt;An isolation boundary provides access control and protects the integrity of the hardware, software, and firmware that perform...
    Rule Medium Severity
  • SRG-APP-000243-DB-000373

    <GroupDescription></GroupDescription>
    Group
  • IDMS must prevent unauthorized and unintended information transfer via database buffers.

    &lt;VulnDiscussion&gt;The purpose of this control is to prevent information, including encrypted representations of information, produced by the ac...
    Rule Medium Severity
  • SRG-APP-000251-DB-000160

    <GroupDescription></GroupDescription>
    Group
  • IDMS must check the validity of all data input unless the organization says otherwise.

    &lt;VulnDiscussion&gt;Invalid user input occurs when a user inserts data or characters into an application's data entry fields and the application ...
    Rule Medium Severity
  • SRG-APP-000251-DB-000391

    <GroupDescription></GroupDescription>
    Group
  • CA IDMS must permit the use of dynamic code execution only in circumstances determined by the organization and limit use of online and batch command facilities from which dynamic statements can be issued.

    &lt;VulnDiscussion&gt;The IDMS Common Facilities (BCF and OCF) can execute commands that can make updates to IDMS, and their use should be protecte...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules