In the event of application failure, Mainframe Products must preserve any information necessary to determine the cause of failure and any information necessary to return to operations with the least disruption to mission processes.

STIG ID: SRG-APP-000226-MFP-000301  |  SRG: SRG-APP-000226 |  Severity: medium |  CCI: CCI-001665 |  Vulnerability Id: V-205519 | 

Vulnerability Discussion

Failure to a known state can address safety or security in accordance with the mission/business needs of the organization. Failure to a known secure state helps prevent a loss of confidentiality, integrity, or availability in the event of a failure of the information system or a component of the system. Preserving application state information helps to facilitate application restart and return to the operational mode of the organization with less disruption to mission-essential processes.

Check

Examine installation and configuration settings.

If the Mainframe Product is not configured to preserve information necessary to determine cause of failure and to assist in the return to normal operation, this is a finding.

Fix

Configure the Mainframe Product to preserve information necessary to determine cause of failure and to assist in the return to normal operation.