APAR status
Closed as fixed if next.
Error description
The macros in question are located on the DS: /usr/local/apache-tomcat-5.5.33/webapps/storediq/WEB-INF/classes /query-macros.properties 1) The current SSN filter incorrectly triggers on invalid SSN. It will miss newly assigned SSN. The recognition for the filter is implemented using the old method of SSN classification. Please review the rules: https://www.socialsecurity.gov/employer/randomizationfaqs.html New rules below: The SSA eliminated the geographical significance of the first three digits of the SSN, referred to as the area number, by no longer allocating the area numbers for assignment to individuals in specific states. The significance of the highest group number (the fourth and fifth digits of the SSN) for validation purposes was eliminated. Randomization also introduced previously unassigned area numbers for assignment excluding area numbers 000, 666 and 900-999. SSN randomization will not assign group number 00 or serial number 0000. SSNs containing group number 00 or serial number 0000 will continue to be invalid. The new assignment process only applies to those receiving an SSN for the first time. 2)The current CC filters have missing prefixes: https://en.wikipedia.org/wiki/Bank_card_number#Issuer_identifica tion_number_.28IIN.29 Missing: Diners North America 54,55 Discover 6440, 6490, 622126, 622925 3) The current CC filters have incorrect ranges: Incorrect Ranges ( https://www.discovernetwork.com/value-added-reseller/images/Disc over-IIN-Bulletin-Feb-2015-FINAL.pdf ) Discover and JCB opens larger range than is valid In the RegEx behind the Credit Card macro dashes are zero or one using '?' which means that we can put together odd sequences like 601100000000-0000 for Discover cards which probably is a false positive. Please review using back references to keep a consistent format. Environment:7.6.0.5 Provided information/documents: The macros in question are located on the DS: /usr/local/apache-tomcat-5.5.33/webapps/storediq/WEB-INF/classes /query-macros.properties
Local fix
From L3: We are prepared to make a few changes and will try to put them in the next release pending testing. 1) SSN Macro We will improve this macro to allow the first digit to start with 8 and filter out all zeros for the second and third parts. 2) Missing prefixes As for the Diners North America, these codes are actually MasterCard codes, and are processed by MasterCard. As such, we will not make any changes to this as they are already picked up by the MC macro. We will modify the Discover macro to allow cards beginning with 644-649 and 62. 3) As for the dashes, the macro is intentionally permissive since there is no assurance that there is a set sequence of dashes that is guaranteed to work. We would rather have a known false positive than a known false negative. As such, we will keep the dashes as they are. If the customer feels they would still like a stricter macro sequence then we can help them with that (but I am guessing from their comment that they know how to do this).
Problem summary
Fixed in release 7.6.0.7.
Problem conclusion
Temporary fix
Comments
APAR Information
APAR number
IT14093
Reported component name
APPLICATION
Reported component ID
5725M8402
Reported release
760
Status
CLOSED FIN
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2016-03-02
Closed date
2016-07-25
Last modified date
2016-07-25
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
DataSrv
Fix information
Applicable component levels
R760 PSY
UP
[{"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSCTUXG","label":"StoredIQ Application"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"760","Edition":"","Line of Business":{"code":"","label":""}}]
Document Information
Modified date:
25 July 2016