IT14093: FULL TEXT MACRO REGEX FILTERS INCORRECT/INCOMPLETE

APAR status

• Closed as fixed if next.

Error description

• The macros in question are located on the DS:
  
  /usr/local/apache-tomcat-5.5.33/webapps/storediq/WEB-INF/classes
  /query-macros.properties
  
  1) The current SSN filter incorrectly triggers on invalid SSN.
  
  It will miss newly assigned SSN. The recognition for the filter
  is implemented using the old method of SSN classification.
  Please review the rules:
  https://www.socialsecurity.gov/employer/randomizationfaqs.html
  
  New rules below:
  The SSA eliminated the geographical significance of the first
  three digits of the SSN, referred to as the area number, by no
  longer allocating the area numbers for assignment to
  individuals in specific states. The significance of the highest
  group number (the fourth and fifth digits of the SSN) for
  validation purposes was eliminated.
  Randomization also introduced previously unassigned area
  numbers for assignment excluding area numbers 000, 666 and
  900-999.
  
  SSN randomization will not assign group number 00 or serial
  number 0000. SSNs containing group number 00 or serial number
  0000 will continue to be invalid.
  
  The new assignment process only applies to those receiving an
  SSN for the first time.
  
  2)The current CC filters have missing prefixes:
  https://en.wikipedia.org/wiki/Bank_card_number#Issuer_identifica
  tion_number_.28IIN.29
  
  Missing:
  Diners North America 54,55
  
  Discover 6440, 6490, 622126, 622925
  
  3) The current CC filters have incorrect ranges:
  Incorrect Ranges (
  https://www.discovernetwork.com/value-added-reseller/images/Disc
  over-IIN-Bulletin-Feb-2015-FINAL.pdf )
  
  Discover and JCB opens larger range than is valid
  
  In the RegEx behind the Credit Card macro dashes are zero or
  one using
  '?' which means that we can put together odd sequences like
  601100000000-0000 for Discover cards which probably is a false
  positive. Please review using back references to keep a
  consistent
  format.
  
  
  
  Environment:7.6.0.5
  
  Provided information/documents:
  The macros in question are located on the DS:
  
  /usr/local/apache-tomcat-5.5.33/webapps/storediq/WEB-INF/classes
  /query-macros.properties
  

Local fix

• From L3:
  We are prepared to make a few changes and will try to put them
  in the next release pending testing.
  
  1) SSN Macro
  We will improve this macro to allow the first digit to start
  with 8 and filter out all zeros for the second and third parts.
  
  2) Missing prefixes
  As for the Diners North America, these codes are actually
  MasterCard codes, and are processed by MasterCard. As such, we
  will not make any changes to this as they are already picked up
  by the MC macro.
  
  We will modify the Discover macro to allow cards beginning with
  644-649 and 62.
  
  3) As for the dashes, the macro is intentionally permissive
  since there is no assurance that there is a set sequence of
  dashes that is guaranteed to work. We would rather have a known
  false positive than a known false negative. As such, we will
  keep the dashes as they are.
  
  If the customer feels they would still like a stricter macro
  sequence then we can help them with that (but I am guessing
  from their comment that they know how to do this).
  

Problem summary

• Fixed in release 7.6.0.7.
  

Problem conclusion

Temporary fix

Comments

APAR Information

• APAR is sysrouted FROM one or more of the following:

• APAR is sysrouted TO one or more of the following:

Modules/Macros

• DataSrv
  

Fix information

Applicable component levels

• R760 PSY

     UP