External Product Interface › Security Considerations › Passwords and the EPI
Passwords and the EPI
If you are writing dialogs that include entering passwords or other confidential information, keep in mind that even though passwords are not visible on a real screen, they are visible on a virtual screen (using the RDSCREEN or RDSCRROW or PEEK commands). Follow these guidelines:
- Secure all EPI commands through security rules.
- Store REXX programs that include passwords in read-protected libraries to prevent others from reading the password from the REXX source code.
- Do not leave a session logged on if it gives access to secured facilities, unless you can control access to the virtual terminal once it is logged on.
Copyright © 2014 CA.
All rights reserved.
|
|