IBM z/OS, for PKI-based authentication, must use the ESM to store keys.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-98167 | RACF-ES-000830 | SV-107271r2_rule | Medium |
| Description |
|---|
| If the private key is discovered, an attacker can use the key to authenticate as an authorized user and gain access to the network infrastructure. |
| STIG | Date |
|---|---|
| IBM z/OS RACF Security Technical Implementation Guide | 2020-06-29 |
Details
| Check Text ( C-97003r2_chk ) |
|---|
| From the ISPF Command Shell enter: OMVS enter find / -name *.kdb If any files are found, this is a finding. |
| Fix Text (F-103843r2_fix) |
|---|
| Define all Keys/Certificates to the security database. Remove the all .kdb files. |