The IBM z/OS Policy Agent must contain a policy that manages excess capacity, bandwidth, or other redundancy to limit the effects of information flooding types of denial-of-service (DoS) attacks.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-224011	TSS0-OS-000150	SV-224011r958528_rule		Medium

Description

DoS is a condition when a resource is not available for legitimate users. When this occurs, the organization either cannot accomplish its mission or must operate at degraded capacity.

STIG	Date
IBM z/OS TSS Security Technical Implementation Guide	2024-12-05

Details

Check Text (C-25684r516432_chk)

Examine the Policy Agent policy statements.

If it can be determined that there are policy statements that manages excess capacity, this is not a finding.

Fix Text (F-25672r516433_fix)

Develop Policy application and Policy agent to manage excess capacity.