IBM's DITTO Can Access Unauthorized VSAM Datasets
search cancel

IBM's DITTO Can Access Unauthorized VSAM Datasets

book

Article ID: 54859

calendar_today

Updated On:

Products

Top Secret Top Secret - LDAP Top Secret - VSE

Issue/Introduction

Description:

DITTO can access unauthorized VSAM dataset.

If IBM VSAM Utility IDCAMS is used, the unauthorized user gets a CA Top Secret security violation.

Solution:

IBM's DITTO program is a powerful dataset utility that can bypass CA Top Secret security.

DITTO uses physical I/O to the DASD to get around security.

The DITTO program and DITTO functions can be secured with CA Top Secret to control unauthorized use.

Please refer to the CA Top Secret Implementation: Batch, STC and APPC Guide for further details on securing IBM's DITTO.

Environment

Release:
Component: TSSVSE