IBM's DITTO Can Access Unauthorized VSAM Datasets

Document ID : KB000054859
Last Modified Date : 14/02/2018
Show Technical Document Details

Description:

DITTO can access unauthorized VSAM dataset.

If IBM VSAM Utility IDCAMS is used, the unauthorized user gets a CA Top Secret security violation.

Solution:

IBM's DITTO program is a powerful dataset utility that can bypass CA Top Secret security.

DITTO uses physical I/O to the DASD to get around security.

The DITTO program and DITTO functions can be secured with CA Top Secret to control unauthorized use.

Please refer to the CA Top Secret Implementation: Batch, STC and APPC Guide for further details on securing IBM's DITTO.