|
Name |
SRR Review Procedures, OS/390 ACF2 Checklist, v5 Release
2.3
|
|
Version |
Version 5, Release 2.3
|
|
Status |
Final
|
| Creation
Date |
Date unknown.
|
| Revision
Date |
2007-05-30
|
| Product
Category |
Security Add-on to Operating System
|
| Vendor |
IBM
|
| Product |
IBM OS/390 ACF2 Security component
|
| Product
Version |
IBM OS/390 ACF2 Security component
|
| Product
Role |
OS/390 Operating Platform
|
|
Checklist
Summary |
This SRR Review Procedures, OS/390 ACF2 document provides
the procedures for conducting a Security Readiness
Review (SRR) to determine compliance with
the requirements in the OS/390 Security Technical
Implementation Guides (STIG). This checklist
must be used together with the corresponding
version of the STIG document. This SRR guide
focuses strictly on the IBM OS/390 operating
system (OS) and how the ACF2 security component
interacts with the operating system. Additionally,
this checklist ensures the site has properly
installed and implemented the ACF2 component
for the IBM OS/390 OS and that it is being
managed in a way that is secure, efficient,
and effective, through procedures outlined
in the checklist. The items reviewed are based
on standards and requirements published by
DISA in the OS/390 Security Technical Implementation
Guide.
|
| Known
Issues |
Not Available.
|
| Target
Audience |
Developped for the DOD.
This checklist has been created for IT professionals,
particularly operating system administrators
with a background in the IBM OS/390 OS, as
well as information security personnel. The
document assumes that the reader has experience
installing and administering IBM OS/390-based
systems in domain or standalone configurations.
|
| Target
Operational Environment |
Enterprise and Specialized
Security-Limited Functionality.
|
| Checklist
Installation Tools |
The scripts need to be unzipped (Windows) or untarred/uncompressed
(Unix) and/or copied to the host system (Windows,
Unix copy commands).
|
| Rollback
Capability |
The scripts create temporary files. These files are removed
at the completion of the script.
|
| Testing
Information |
Not Available.
|
| NIAP/CMVP
Status |
Not Available.
|
| Regulatory
Compliance |
DOD Directive 8500.
|
Comments,
Warnings, Disclaimer, Miscellaneous
|
Please refer to the Checklist or the README.txt files provided
with the scripts for any comments, warnings,
or detailed instructions.
|
| Disclaimer |
Not Available.
|
| Product
Support |
It should be noted that FSO Support for the STIGs, Checklists,
and Tools is only available to DOD Customers.
|
| Submitting
Organization/Authors |
Defense Information Systems Agency
|
| Point
of Contact |
Not Available.
|
| Sponsor |
Not Available.
|
| Licensing |
Not Available.
|
| Checklist
Homepage |
http://iase.disa.mil/stigs/checklist/index.html
|
| Download
Package |
http://iase.disa.mil/stigs/checklist/
ACF2-checklist-V5R23.doc
|
| Integrity |
SHA1 Digest (ACF2-checklist-V5R23.doc) =
2766878ffbed451110ef11bfbd0f0acbd7084407
SHA256 Digest (ACF2-checklist-V5R23.doc) =
c1888893c6104dc7b48f00b370f47f4219941a69a09
821829eed9d2714fe16dd
|
| Change
History |
Version
4, Release 1.3, 2004-02
Version 4, Release 1.4, 2004-10
Version 4, Release 1.5, 2005-07
Version 5, Release 1.1, 2006-04
Version 5, Release 2.1, 2006-11
Version 5, Release 2.2, 2007-03-23
Version 5, Release 2.3, 2007-05-30
|
| Dependency/Requirement |
OS/390 v5r1 STIG
Volume 1, 2005-01-21
OS/390 v5r1 STIG Volume 2, 2005-01-21
|
| References |
Not Available.
|
| NIST
Identifier |
1068
|
