How to Audit zOS with USS TCPIP FTP and the Internet
IBM Systems
Training
Provided by the Henderson Group
This class is a logical follow-on to "HG64: How to Audit MVS, RACF, ACF2, CICS, and DB2 Security". Mainframe Data Security Officers will benefit from this class, as well as IT auditors. Now that most mainframe installations have connected at least one mainframe to the Internet, auditors and security staff need to address the effect this has on mainframe security. IBM has made these Internet connections possible by adding several layers of software to the MVS operating system:
* USS or UNIX System Services: This is UNIX running under the control of MVS and the security software. It interfaces with RACF, ACF2, or TopSecret to make this perhaps the most secure UNIX commonly available.
* TCP/ IP, the communication protocol of the Internet, and of most types of computers. This makes it possible for the mainframe to communicate with the Internet, with Windows, with other UNIXes, with Novell, and with other platforms easily. On the mainframe, you will often find DB2, MQ Series, CICS, and other system software talking to other computers using TCP/ IP. Of course, to provide effective security, we need to control every path into the system. The number of paths is greater now because we use TCP/ IP. The security mechanisms we use combine the best of RACF/ ACF2/ TopSecret with the best of TCP/ IP native security. The quality of the security depends upon how well we implement and integrate these mechanisms.
* FTP or File Transfer Protocol. TCP/ IP always includes a series of programs or daemons, each dedicated to a specific purpose. One of the best known of these is FTP, which lets you upload and download files over the Internet. On the mainframe, FTP can upload and download MVS files as well as USS (UNIX) files. FTP can also serve as an RJE remote and it can talk to DB2.
* The Websphere Web Server (another of FTP's daemons) is software that talks over the Internet to Internet Explorer and other browsers on people's personal computers. (It is comparable to Apache or IIS, but is much more secure.) This is often the driving force behind connecting the mainframe to the Internet, since it supports e-business.
Each of these layers has its own security, which is dependent on the security of the layers below it. IBM gives us the tools to secure this all thoroughly, but the tools are often not thoroughly implemented. Effective auditors can help to close the security gap by identifying the risks and making practical recommendations to improve the way the tools are implemented.
This class shows you how the software in each of these layers works, how its security works, and how to audit it. For all of these, you will learn a systematic approach to evaluate the risk, evaluate the security tools in place, and to make practical recommendations to improve security.
You will learn:
* How USS works how its security works
* How TCP/ IP works and how its security works
* How FTP works and how its security works on the mainframe
* How the Websphere web server works and how its security works
* What data to collect and how to interpret it
* How to conduct the audit efficiently and effectively,
The workbook is a valuable reference.
Related Software Programs or Products: z/OS, MVS, mainframe computers
Related Awards, Degrees or Certifications: CISA
|
|
||||||||||
How to Audit zOS with USS TCPIP FTP and the Internet Seminar Schedule
| Date | Location | |||
|---|---|---|---|---|
| [Register] |
How to Audit zOS with USS TCPIP FTP and the Internet
This class is a logical follow-on to "HG64: How to Audit MVS, RACF, ACF2, CICS, and DB2 Security". Mainframe Data Security Officers will benefit from this class, as well as IT auditors. Now that most mainframe installations have connected at least one mainframe to the Internet, auditors and security staff need to address the effect this has on mainframe security. IBM has made these Internet connections possible by adding several layers of software to the MVS operating system:
* USS or UNIX System Services: This is UNIX running under the control of MVS and the security software. It interfaces with RACF, ACF2, or TopSecret to make this perhaps the most secure UNIX commonly available.
* TCP/IP, the communication protocol of the Internet, and of most types of computers. This makes it possible for the mainframe to communicate with the Internet, with Windows, with other UNIXes, with Novell, and with other platforms easily. On the mainframe, you will often find DB2, MQ Series, CICS, and other system software talking to other computers using TCP/IP. Of course, to provide effective security, we need to control every path into the system. The number of paths is greater now because we use TCP/IP. The security mechanisms we use combine the best of RACF/ACF2/TopSecret with the best of TCP/IP native security. The quality of the security depends upon how well we implement and integrate these mechanisms.
* FTP or File Transfer Protocol. TCP/IP always includes a series of programs or daemons, each dedicated to a specific purpose. One of the best known of these is FTP, which lets you upload and download files over the Internet. On the mainframe, FTP can upload and download MVS files as well as USS (UNIX) files. FTP can also serve as an RJE remote and it can talk to DB2.
* The Websphere Web Server (another of FTP's daemons) is software that talks over the Internet to Internet Explorer and other browsers on people's personal computers. (It is comparable to Apache or IIS, but is much more secure.) This is often the driving force behind connecting the mainframe to the Internet, since it supports e-business.
Each of these layers has its own security, which is dependent on the security of the layers below it. IBM gives us the tools to secure this all thoroughly, but the tools are often not thoroughly implemented. Effective auditors can help to close the security gap by identifying the risks and making practical recommendations to improve the way the tools are implemented.
This class shows you how the software in each of these layers works, how its security works, and how to audit it. For all of these, you will learn a systematic approach to evaluate the risk, evaluate the security tools in place, and to make practical recommendations to improve security.
You will learn:
* How USS works how its security works
* How TCP/IP works and how its security works
* How FTP works and how its security works on the mainframe
* How the Websphere web server works and how its security works
* What data to collect and how to interpret it
* How to conduct the audit efficiently and effectively,
The workbook is a valuable reference.
* USS or UNIX System Services: This is UNIX running under the control of MVS and the security software. It interfaces with RACF, ACF2, or TopSecret to make this perhaps the most secure UNIX commonly available.
* TCP/IP, the communication protocol of the Internet, and of most types of computers. This makes it possible for the mainframe to communicate with the Internet, with Windows, with other UNIXes, with Novell, and with other platforms easily. On the mainframe, you will often find DB2, MQ Series, CICS, and other system software talking to other computers using TCP/IP. Of course, to provide effective security, we need to control every path into the system. The number of paths is greater now because we use TCP/IP. The security mechanisms we use combine the best of RACF/ACF2/TopSecret with the best of TCP/IP native security. The quality of the security depends upon how well we implement and integrate these mechanisms.
* FTP or File Transfer Protocol. TCP/IP always includes a series of programs or daemons, each dedicated to a specific purpose. One of the best known of these is FTP, which lets you upload and download files over the Internet. On the mainframe, FTP can upload and download MVS files as well as USS (UNIX) files. FTP can also serve as an RJE remote and it can talk to DB2.
* The Websphere Web Server (another of FTP's daemons) is software that talks over the Internet to Internet Explorer and other browsers on people's personal computers. (It is comparable to Apache or IIS, but is much more secure.) This is often the driving force behind connecting the mainframe to the Internet, since it supports e-business.
Each of these layers has its own security, which is dependent on the security of the layers below it. IBM gives us the tools to secure this all thoroughly, but the tools are often not thoroughly implemented. Effective auditors can help to close the security gap by identifying the risks and making practical recommendations to improve the way the tools are implemented.
This class shows you how the software in each of these layers works, how its security works, and how to audit it. For all of these, you will learn a systematic approach to evaluate the risk, evaluate the security tools in place, and to make practical recommendations to improve security.
You will learn:
* How USS works how its security works
* How TCP/IP works and how its security works
* How FTP works and how its security works on the mainframe
* How the Websphere web server works and how its security works
* What data to collect and how to interpret it
* How to conduct the audit efficiently and effectively,
The workbook is a valuable reference.
About The Training Provider: the Henderson Group
the Henderson Group - The Henderson Group (www.stuhenderson.com) provides consulting and training for mainframe information security and IT audit. We offer courses in RACF administration, and audit of mainframe software such as MVS, CICS, and DB2. Our consulting services include RACF implementation and improvement as well as technical support to auditors.
Our classes include "Effective RACF Administration",...
