STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

For Mainframe Products providing audit record aggregation, the Mainframe Product must compile audit records from mainframe components into a system-wide audit trail that is time-correlated with a tolerance for the relationship between time stamps of individual records in the audit trail in accordance with the sites security plan.

DISA Rule

SV-82671r1_rule

Vulnerability Number

V-68181

Group Title

SRG-APP-000086-MFP-000110

Rule Version

SRG-APP-000086-MFP-000110

Severity

CAT II

CCI(s)

• CCI-000174 - The information system compiles audit records from organization-defined information system components into a system-wide (logical or physical) audit trail that is time-correlated to within an organization-defined level of tolerance for relationship between time stamps of individual records in the audit trail.

Weight

10

Fix Recommendation

Configure the Mainframe Product to use the operating system clock for time stamps.

Check Contents

If the Mainframe Product does not perform audit record aggregation, this is not applicable.

Examine configuration settings.

If the Mainframe Product settings do not use the operating system clock for time stamps, this is a finding.

Vulnerability Number

V-68181

Documentable

False

Rule Version

SRG-APP-000086-MFP-000110

Severity Override Guidance

If the Mainframe Product does not perform audit record aggregation, this is not applicable.

Examine configuration settings.

If the Mainframe Product settings do not use the operating system clock for time stamps, this is a finding.

Check Content Reference

M

Target Key

3061

Comments