Print Services Facility (PSF)

In an MLS system, operators, rather than end-users, are responsible for separating and distributing printed output. There are procedures that operators in an MLS system should follow to manage deferred-printing mode page printers. Deferred-printing mode printers are those that select output from the JES2 output queues, rather than being under direct control of a particular job. This should be the only mode allowed for page printers.
ctsfz
In an MLS system, operators, rather than end-users, are responsible for separating and distributing printed output. There are procedures that operators in an MLS system should follow to manage deferred-printing mode page printers. Deferred-printing mode printers are those that select output from the JES2 output queues, rather than being under direct control of a particular job. This should be the only mode allowed for page printers.
The security separator pages can be used to identify the user who submitted the print job. Although PSF will enforce “print labeling”, the practice of putting security labels on all printed output, CA Top Secret does not support print labeling in an MLS environment.
Configuration Checklist
This checklist describes the software configuration requirements when MLS is active on an CA Top Secret system.
 
Requirement
 
Use security separator pages
Using Security Separator Pages
Printing on all page printers is done through PSF. The PSF subsystem controls all paged, hardcopy printing in CA Top Secret. To reduce the chance of users tampering with separator pages, PSF ensures that all printing is identified with the user who submitted the print job. It does this by putting the user's UID and an unforgeable, randomly assigned number on the beginning and ending separator pages for each job. Operators must check the numbers on the beginning and ending separator pages to ensure that they match and are authentic. If they do not, the output stack should be searched further for a matching ending page. Since the numbers are determined when the job is printed, rather than when it is run, the job cannot find out what the number is going to be to simulate authentic separator pages. To use security separator pages, you must replace the PSF-supplied default job header and trailer routines with PSF exit routines APSUX01S and APSUX02S from SYS1.SAMPLIB.