Security Configuration Checklists Program for IT Products

Home | Browse Checklists Repository | Glossary | Subscribe to Mailing List | Contact Us

Browse Repository by

		Product Category
		Vendor
		Submitting Organization

Our Sponsor

Unisys Security Technical Implementation Guide

Name	Unisys Security Technical Implementation Guide, v7 Release 2
Version	Version 7, Release 2
Status	Final
Creation Date	Date unknown
Revision Date	2006-08-28
Product Category	Operating System
Vendor	Unisys
Product	Unisys Executive and Standard system software
Product Version	Unisys Executive and Standard system software
Product Role	Operating System
Checklist Summary	This document will define the minimum requirements, standards, controls, options and procedures that have to be in place for the Unisys Executive and standard system software to meet MAC II sensitive compliance as described in the DODI 8500.2. Individual sites may implement additional security measures as deemed necessary. This document applies to all DOD-owned and/or administered Unisys systems controlled by DOD sites, Systems Support Offices (SSOs), and other organizations, hereinafter referred to simply as sites. The requirements set forth in this document are for the Unisys hardware (U2200 mainframes or ClearPath IX enterprise servers) and Executive and Standard system software (all software not written or procured by individual AISs), hereinafter referred to simply as Unisys. Security measures implemented by AISs may augment, but not circumvent, Executive security controls. The security exposures outside the scope just defined (i.e., network infrastructure, personnel security, etc.) are not addressed in this document. This STIG still contains many ALN specific policies, procedures and settings. If a requirement is marked as ALN specific or DISA site specific then it is required only for ALN or DISA sites.
Known Issues	This Unisys STIG presents the known security configuration items, vulnerabilities, and issues required to be addressed by DoD policy. In addition to this STIG, compliance validation tools and checklists are available to .mil and .gov customers to assist in the efforts to implement the required configuration. It must be noted that the guidelines specified should be evaluated in a local, representative test environment before implementation within large user populations. The extensive variety of environments makes it impossible to test these guidelines for all potential software configurations. For some environments, failure to test before implementation will lead to a loss of required functionality. The original target audience for this STIG was DISA facilities using the Access and Location Number (ALN) modification of the standard Unisys software. As a consequence, this STIG still contains many ALN specific policies, procedures and settings.
Target Audience	Developped for the DOD. The requirements set forth in this document are designed to assist Information Assurance Officers (IAOs) and System Administrators (SAs) in support of protecting DOD network infrastructures and resources. This document assumes that the reader has experience installing and administering the Unisys Executive and Standard system software suite.
Target Operational Environment	Enterprise and Specialized Security-Limited Functionality.
Checklist Installation Tools	Not Available.
Rollback Capability	Not Available.
Testing Information	Not Available.
NIAP/CMVP Status	Not Available.
Regulatory Compliance	DOD Directive 8500.
Comments, Warnings, Disclaimer, Miscellaneous	Refer to Known Issues.
Disclaimer	Not Available.
Product Support	It should be noted that FSO Support for the STIGs, Checklists, and Tools is only available to DOD Customers.
Submitting Organization/Authors	Defense Information Systems Agency
Point of Contact	Not Available.
Sponsor	Not Available.
Licensing	Not Available.
Checklist Homepage	http://iase.disa.mil/stigs/stig/index.html
Download Package	http://iase.disa.mil/stigs/stig/ UNISYS-STIG-V7R2.doc
Integrity	SHA1 Digest (UNISYS-STIG-V7R2.doc) = a2a5864eb01494a85ee59b855e92d48764b92c2b SHA256 Digest (UNISYS-STIG-V7R2.doc) = 8e7b96ccab091ff09419c7a8af1f465fe9e16d93bf3d 399ddb15a9110531a77a
Change History	v7 Release 0: 2005-01-15 v7 Release 1: 2005-07-28 v7 Release 2: 2006-08-28
Dependency/Requirement	Unisys Security Readiness Review Checklist, v6r1.2
References	Government Publications Department of Defense (DOD) Directive 8500.1, “Information Assurance (IA)”, October 24, 2002. Department of Defense (DOD) Instruction 8500.2, “Information Assurance (IA) Implementation”, February 6, 2003. Chairman of The Joint Chiefs Of Staff Manual (CJCSM) 6510.01, “Defense-In-Depth: Information Assurance (IA) and Computer Network Defense (CND)”, 25 March 2003. DOD Instruction 5200.40, DOD “Information Technology Security Certification and Accreditation Process (DITSCAP)”, 30 Dec 1997. Security Technical Implementation Guide on Enclave Security, Version 1, Release 2 DRAFT, 31 August 2001. National Security Agency (NSA), “Information Systems Security Products and Services Catalog” (Current Edition). Defense Logistics Agency Regulation (DLAR) 5200.17, “Security Requirements for Automated Information and Telecommunications Systems,” June 9, 1993. Army Regulation (AR) 380-19, “Information Systems Security,” February 27, 1998. Air Force Systems Security Instruction (AFSSI) 5102, “The Computer Security (COMPUSEC) Program,” September 12, 1997. Air Force Manual (AFMAN)) 33-229, “Controlled Access Protection,” November 1, 1997. AFM 171-110, Vol I, U1100 DPC Management. AFM 171-110, Vol II, U1100 Computer Operator Quick Reference. AFM 171-150, Vol IA, Database Administration Computer Operation Manual. Secretary of the Navy Instruction (SECNAVINST) 5239.2, “Department of the Navy Automated Information Systems Security (INFOSEC) Program,” July 14, 1995. Navy Staff Office Publication (NAVSO Pub) 5239-15, “Controlled Access Protection Guidebook,” December 1994. Unisys STIG V7R0 DISA Field Security Operations. Commercial Publications Most Unisys documentation can be accessed online from Unisys using the following procedure: a) Go to the URL http://www.support.unisys.com/ b) Click on the documentation link. c) Read and agree to the Terms of Use. This will take you to a list of current online documentation. The documentation primarily of interest is in the ClearPath IX/2200 section. However, the MAPPER documentation is found in a separate section. There is also a section for Single Point of Operations. Unisys/Team Quest 7831 0661, Site Management Complex (SIMAN) Administration and End Use Guide. Unisys 7831 0307, OS 2200 Security Planning and Administration Reference Manual. Unisys 7862 1760, Security Administration for ClearPath OS 2200 Help, replaces Unisys 7831 0307 in HMP IX 7.0. Unisys 7831 0885, Security End Use Guide. Unisys 7831 0315, System Log Operations and Support Reference Manual. Unisys/Team Quest 7830 7436, Log Analyzer (LA) Administration and End Use Reference Manual.
NIST Identifier	1077