For a number of decades mainframe is getting vastly utilised in lots of public and private Organizations to hold small business crucial information. Banks, insurance coverage organizations, government entities and credit card organizations are handful of of them. The significant mainframe options in this regard are reliability, serviceability, scalability, overall performance and final but not the least safety. To defend millions of every day transactions, the utilization of safety options has to be strictly administered. The at present offered mainframe safety items incorporate RACF from IBM, Top rated Secret and ACF2 from CA Technologies. Amongst them RACF (Resource Access Manage Facility) is the most frequently utilised item.
Earlier when systems utilised to be mainly operated by single customers, safety was not a massive concern for the Organizations. With the availability of multi-application, multi-user and multi-job Mainframe environments the enterprises became additional conscious of the resource protection from unauthorized access. The elements of IBM safety software program are listed under:
- LDAP (Lightweight Directory Access Protocol) server for accessing and keeping distributed directory data more than an IP network
- DCE Safety Server to give distributed computing atmosphere.
- Network Authentication Service to give safety service devoid of the will need of a middleware item.
- z/OS Firewall Technologies to let a secure mainframe connection to Online.
- PKI Solutions to problem digital certificates for each internal and external customers. It also aids in public important set up.
- Enterprise Identity Mapping to handle various user identities in an enterprise atmosphere.
RACF, an add-on software program item, holds data about customers, sources and database access. It verifies user identities and raises resource request. The access manage tasks of RACF are as follows:
- Identification and verification of customers as nicely as identification, classification and protection of method sources
- User authorization for protected access to the sources
- Access manage to information, method software program and applications at study, create, update and delete modes
- Creation of a centralized and decentralized safety administration
- Assistance for digital certificates and cryptographic solutions
- Auditing devoid of any modification in the applications
- Logging and reporting of attempts to access protected sources devoid of appropriate authorization
Digital certificates, case sensitive IDs and passwords as nicely as public important infrastructure solutions are the most current safety options which are also supported by RACF. The password identification policy of RACF involves minimum length, use of numeric characters and capital letters, lack of repeating characters and so on. Despite the fact that the new safety items ACF2 and Top rated Secret from CA technologies are in market place, RACF remains the ideal decision for offering safety in Mainframe atmosphere.