We recommend that you implement strict security and change management controls to ensure that only properly certified changes are allowed in the exit code. We also recommend that you periodically review each exit to recertify its applicability and usefulness. If the exit provides a function that this security product now provides, we recommend that you migrate from that exit point to the native product functionality.
Business Value:
Improperly coded exits can bypass security and open your system to exposures. A line-by-line review of exit code can help ensure that exits are performing their intended function. As this security product continues to grow, we have added exit functionality to the base product, typically using new options, security records, privileges, and so on.
Additional Considerations:
The CA Auditor freezer function can you help you automatically monitor this critical data.
In addition, CA Health Checker validates all CA ACF2 security exit points as well as checking that JES2 exits are in place and enabled.
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|