My $0.02: The auditor should really be concerned with the physical security of the tapes. If they can't get into the hands of untrusted people, then there is no issue. His checklist is probably couched in terms of workstation backup tapes and like media which is casually handled and haphazardly stored. In an enterprise scenario, tight physical security is the essence of that environment.
Richard Sims
On Feb 18, 2005, at 4:34 PM, McClean, Frank wrote:
The auditor would like a published statement from IBM TSM that says something like: The TSM data is written in a proprietary format which prevents a tape utility; such as 'ditto', 'Iebcopy', etc., from being able to read any of the client information.
