Three system values, Verify Object on Restore (QVFYOBJRST), Force Conversion on Restore (QFRCCVNRST), and Allow Object Restore (QALWOBJRST), act as a series of filters to determine whether a program is restored without change, whether it is re-created as it is restored, or whether it is not restored to the system.
The QVFYOBJRST system value determines whether objects are required to have digital signatures to be restored to your system. You can prevent anyone from restoring an object, unless that object has a correct digital signature from a trusted software provider.
The QALWOBJRST system value determines whether objects that are security-sensitive may be restored to your system. You can use it to prevent anyone from restoring a system state object or an object that adopts authority.
Scan objects that are accessed after a restore operation:
The *NOPOSTRST value of the system value, QSCANFSCTL, impacts whether or not objects are scanned after a restore operation. Do you want to scan objects on the next access after the restore is complete? You need to consider what objects you are restoring and what kind of performance impact the scan will cause. Before determining whether or not to scan objects consider the following: Scanning may not be necessary if you are restoring your own objects which were saved with the option to scan objects and not save objects that failed the scan. Scanning may not be necessary if you are restoring objects that are coming from a trusted source.