Change Manager Data Storage

Identity

UNIX user name.

Authentication

This issue is covered by other areas. The authenticated UNIX user identity is trusted.

Authorization

Standard file system access controls are used to prevent unauthorized access to Change Manager data files. Files and directories are owned by superuser and are not publically readable or writable.

Standard Sun Management Center and Oracle access controls are used to prevent unauthorized access to Change Manager database contents.

Note that NFS allows some access to Change Manager data.

Confidentiality

Files are protected as described for Authorization.

Integrity

Local file access is considered to be trustworthy.

Availability

Denial of service through disk space exhaustion is a possible issue. In such cases, the user is advised to locate Change Manager data on a dedicated file system that does not allow access by ordinary users.

Accountability

Only standard file system ownership mechanisms are provided to address accountability.