STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must prevent the installation of patches, service packs, or application components without verification that the software component has been digitally signed using a certificate that is recognized and approved by the organization.

DISA Rule

SV-82803r1_rule

Vulnerability Number

V-68313

Group Title

SRG-APP-000131-MFP-000189

Rule Version

SRG-APP-000131-MFP-000189

Severity

CAT II

CCI(s)

• CCI-001749 - The information system prevents the installation of organization-defined software components without verification the software component has been digitally signed using a certificate that is recognized and approved by the organization.

Weight

10

Fix Recommendation

Configure installation and configuration settings for change management to prevent the installation of patches, service packs, or application components without verification that the software component has been digitally signed using a certificate that is recognized and approved by the organization.

Check Contents

Examine installation and configuration settings for change management.

If the Mainframe Product does not prevent the installation of patches, service packs, or application components without verification that the software component has been digitally signed using a certificate that is recognized and approved by the organization, this is a finding.

Vulnerability Number

V-68313

Documentable

False

Rule Version

SRG-APP-000131-MFP-000189

Severity Override Guidance

Examine installation and configuration settings for change management.

If the Mainframe Product does not prevent the installation of patches, service packs, or application components without verification that the software component has been digitally signed using a certificate that is recognized and approved by the organization, this is a finding.

Check Content Reference

M

Target Key

3061

Comments