In order to guarantee complete security for your DB2 subsystem, which statement is correct?
A. BSDS and catalog VSAM data sets should always be protected by the SYSADM authority.
B. BSDS and catalog VSAM data sets should always be protected by the MSTR address space.
C. BSDS and catalog VSAM data sets should always be protected by an external security profile.
D. BSDS and catalog VSAM data sets should always be protected by the BSDS system privilege