A fix is available
APAR status
Closed as program error.
Error description
Currently, this test (CKAPC821) only checks for the existence of algorithm ICHDEX01. The use of the KDFAES encryption algorithm should be taken into account in testing PCI-DSS rule set 8.2.1
Local fix
n/a
Problem summary
**************************************************************** * USERS AFFECTED: Users of zSecure Audit exploiting the * * PCI-DSS compliance rule set 8.2.1. * **************************************************************** * PROBLEM DESCRIPTION: The zSecure Audit PCI-DSS compliance * * rule set 8.2.1 does not take into * * account the use of the KDFAES * * encryption algorithm. * **************************************************************** * RECOMMENDATION: Apply the PTF provided. * **************************************************************** The PCI-DSS compliance rule set 8.2.1 (Stored or transmitted password must be encrypted) reports non-compliant entries for passwords that are encrypted with KDFAES algorithm.
Problem conclusion
zSecure Audit has been modified so that the PCI-DSS compliance rule set 8.2.1 takes the KDFAES password encryption algorithm into account.
Temporary fix
Comments
APAR Information
APAR number
OA50608
Reported component name
ZSEC BASE,ADMIN
Reported component ID
5655T0100
Reported release
220
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2016-05-27
Closed date
2016-06-09
Last modified date
2016-07-04
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
UA81925
Modules/Macros
CKAPC821
Fix information
Fixed component name
ZSEC BASE,ADMIN
Fixed component ID
5655T0100
Applicable component levels
R220 PSY UA81925
UP16/06/13 P F606
Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.
[{"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSPQTM","label":"IBM Security zSecure Admin"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"220","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]
Document Information
Modified date:
16 August 2024