An important consideration is how to handle started tasks not defined to CA Top Secret. You can choose to bypass security for undefined STCs, bring undefined STCs under the control of a default ACID, or prompt the operator for an ACID under which each undefined STC will run.
Setting up a default for undefined STCs lets you selectively protect started tasks even in FAIL mode. Some started tasks have very little to impact your operation.
If you choose a strategy of bypassing security for undefined STCs, you are exposed by new started tasks that are introduced by your systems or operations staff, because these STCs will run under the bypass default. If this is the strategy selected, establish other controls over the introduction of new started tasks.
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|