Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Resources
Documents
Publishers
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
IBM DB2 V10.5 LUW Security Technical Implementation Guide
SRG-APP-000494-DB-000344
DB2 must generate audit records when categorized information (e.g., classification levels/security levels) are accessed.
DB2 must generate audit records when categorized information (e.g., classification levels/security levels) are accessed.
An XCCDF Rule
Details
Profiles
Prose
DB2 must generate audit records when categorized information (e.g., classification levels/security levels) are accessed.
Medium Severity
<VulnDiscussion>Use of categorized information must be tracked. Without an audit trail, unauthorized access to protected data could go undetected. For detailed information on categorizing information, refer to FIPS Publication 199, Standards for Security Categorization of Federal Information and Information Systems, and FIPS Publication 200, Minimum Security Requirements for Federal Information and Information Systems.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>