System z Security - Mitigating Risk for the Enterprise
The security-rich holistic design of the IBM mainframe can mitigate the risk of security breaches and help to protect your organization's brand image - and bottom line. Originally designed to be shared by thousands of users, the IBM mainframe has security built into nearly every level of the computer - from the processor level, to the operating system to the application level. This design helps protect System z from malware, viruses and threats from insiders.
System z security features can help you to meet regulatory reporting needs with confidence. These include encryption solutions to help secure data from theft or compromise, access control management and extensive auditing features - with the simplicity of centralized management.
System z security is one of the many reasons why the world's top banks and retailers rely on the IBM mainframe to help secure sensitive business transactions.
|
 PCI - How System z can help
For banks and retailers, the Payment Card Industry (PCI) Data Security Standard is challenging countless business and technology managers to stay well-positioned for their annual PCI audit. To help satisfy auditors, the mainframe offers fortress like security mechanisms such as highly secure access controls and encryption solutions and network security features like built-in intrusion detection services and network security policy agents.
Read more
 Credit-Card Security with Mainframes, IBM Systems Magazine article.
|
 |
 |
IBM Completes Acquisition of Consul
This acquisition strengthens IBM's Service Management initiative by adding key data governance and compliance monitoring, auditing and reporting capabilities across mainframe and distributed environments. |
|
 |
|
Tivoli Identity Manager Support for z/OS!
With support for z/OS, Tivoli Identity Manager Provides a secure, automated and policy-based user management solution that helps effectively manage user accounts, access permissions and passwords from creation to termination across the IT environment. |
|
 |
|
Tivoli Federated Identity Manager
With support for z/OS, Tivoli Federated Identity Manager will help ensure secure transactions across mainframe and distributed environments using SOA and Web services technology. |
|
The job of every security system is to connect users to the system resources to which they are authorized. At the same time, the IT infrastructure must manage resources and users so that access to programs and data are protected and intrusion is detected across the entire enterprise. The challenge is to manage and maintain a consistent security strategy to allow resource protection without negatively impacting productivity.
The IBM security strategy
IBM System z working with key ISVs offers a comprehensive set of support elements that can address a wide range of security issues. By providing the ability to monitor and manage security, these new capabilities help position System z as the central management point or epicenter for enterprise-wide security. From user identification and authentication, access control and auditing to distributed directory, networking security and security administration, System z hardware is designed to provide integrity, process isolation and cryptographic capability to help address your specific security requirements. On top of this solid hardware foundation, System z operating systems offer a variety of customizable security elements within the framework of the Security Server and Communication Server components.
IBM System z continues to extend the value of the mainframe by leveraging robust security solutions to help meet the needs of e-business today with an eye toward the future. System z servers have implemented leading-edge technologies such as high-performance cryptography, multilevel security, large-scale digital certificate authority and lifecycle management, improved Secure Sockets Layer (SSL) performance and advanced Resource Access Control Facility function. And with the addition of z/OS Intrusion Detection Services, System z has enhanced the system's ability to resist network-based attacks while embodying industry and international standards.
¹ All statements regarding IBM's plans, directions and intent are subject to change or withdrawal without notice.
* While expected to execute on all System z hardware, the Linux Utilities have been tested by IBM only on selected System z hardware in a z/OS and Linux workload scenario. For the software versions, levels and/or releases, each of the Linux Utilities have unique requirements, all of which are documented in their individual write-ups. Testing is based on a controlled environment. No assurance is given that an individual user will achieve throughput or performance equivalent to that which may be set forth herein.
| 
