Detections
Analytics

6.4.1 Ensure Trusted Contexts are Enabled

Information

A Trusted Context object provides a means of enforcing encryption, assigning privileges based on roles, and ensuring that the actions performed on behalf of a user are performed in the context of the user's ID and privileges.

Rationale:

Creating Trusted Context objects to enforce encryption and assign roles will protect data in transit and limit access to information on a per user/role basis. Additionally, it ensures actions can be traced back to the user.

Solution

If there is no enabled Trusted Context object, create a Trusted Context object if needed and enable it.

See Also

https://workbench.cisecurity.org/benchmarks/23492

Item Details

Category: ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|AC-17(2), 800-53|IA-5, 800-53|IA-5(1), 800-53|SC-8, 800-53|SC-8(1), CSCv7|14.4

Plugin: IBM_DB2DB

Control ID: 61c9501abdb91433f0a4f5c7899acbcb724bc0522ddb6ecabfc2693c8587c288