STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must perform an integrity check of information as defined in site security plan at startup, at transitional states as defined in site security plan or security-relevant events, or annually.

DISA Rule

SV-82993r1_rule

Vulnerability Number

V-68503

Group Title

SRG-APP-000477-MFP-000376

Rule Version

SRG-APP-000477-MFP-000376

Severity

CAT II

CCI(s)

• CCI-002712 - The information system performs an integrity check of organization-defined information at startup, at organization-defined transitional states or security-relevant events, or on an organization-defined frequency.

Weight

10

Fix Recommendation

Configure the Mainframe Product to perform integrity check of inform as defined in site security plan at startup, at transitional states as defined in site security plan or security-relevant events, or annually.

Check Contents

If the Mainframe Product has no function or capability for integrity verification, this is not applicable.

Examine installation and configuration settings.

If the Mainframe Product is not configured to perform an integrity check of information as defined in site security plan at startup, at transitional states as defined in site security plan or security-relevant events, or annually, this is a finding.

Vulnerability Number

V-68503

Documentable

False

Rule Version

SRG-APP-000477-MFP-000376

Severity Override Guidance

If the Mainframe Product has no function or capability for integrity verification, this is not applicable.

Examine installation and configuration settings.

If the Mainframe Product is not configured to perform an integrity check of information as defined in site security plan at startup, at transitional states as defined in site security plan or security-relevant events, or annually, this is a finding.

Check Content Reference

M

Target Key

3061

Comments