STIGQter: STIG Summary: IBM z/OS TSS Security Technical Implementation Guide Version: 8 Release: 2 Benchmark Date: 23 Apr 2021:

The IBM z/OS systems requiring data at rest protection must properly employ IBM DS8880 for full disk encryption.

DISA Rule

SV-224012r561402_rule

Vulnerability Number

V-224012

Group Title

SRG-OS-000185-GPOS-00079

Rule Version

TSS0-OS-000160

Severity

CAT II

CCI(s)

• CCI-001199 - The information system protects the confidentiality and/or integrity of organization-defined information at rest.

Weight

10

Fix Recommendation

Employ IBM's DS8880 hardware to ensure full disk encryption.

Check Contents

Determine if IBM's DS880 disks are in use.

If they are not in use for systems that require data at rest, this is a finding.

Vulnerability Number

V-224012

Documentable

False

Rule Version

TSS0-OS-000160

Severity Override Guidance

Determine if IBM's DS880 disks are in use.

If they are not in use for systems that require data at rest, this is a finding.

Check Content Reference

M

Target Key

4102

Comments