MVS Security and Audit Article Reprints by Mark S. Hahn

As a technical writer specializing in IBM mainframe MVS and security software (IBM's RACF and Computer Associates' ACF2), I am pleased to offer reprints of some of my articles. Please feel free to also visit my home page.

Last updated Saturday, January 04, 1997. But only to correct URL for Self-Documenting MVS article.

The following articles can be found on the Web. Their abstracts are listed for your review.

  1. Build a Self-Documenting MVS
  2. Data Security and SMF
  3. OpenEdition MVS: UNIX Meets RACF Part I
  4. OpenEdition MVS: UNIX Meets RACF Part II

Enter your e-mail address to receive e-mail when this page is updated.

Your Internet e-mail address:


Abstract:
Most systems programmers and IS auditors don't realize it is possible to use MVS services to capture information documenting the parameter sets used to initialize the system. This makes it much easier to determine the cause of system problems as well as to audit the system. The article details four levels of self-documentation. Each has its own set of advantages.
Disclaimer:
This article was written for the CANDLE Computer Report and refers to specific CANDLE products. Functionally equivalent products are certainly an option. This article was also reprinted in Enterprise Systems Journal and VIPNews.

Abstract:
Is your System Management Facility (SMF) a collection of valuable and useful information or just a bunch of irrelevant data waiting to expire? Is there justification for each of the records being collected and archived, or is it collected "just because"? This article describes a strategy for reducing your volume of SMF data from three levels: MVS itself, your security product (RACF, ACF2, or another), and from individual products that may write their own SMF records.
Disclaimer:
This article was written for the CANDLE Computer Report and refers to specific CANDLE products. Functionally equivalent products are certainly an option.

Abstract:
This article introduces a RACF-familiar administrator to the analogue controls within UNIX and hopefully introduce a UNIX-familiar administrator to how RACF (and OpenEdition/MVS) deal with UNIX controls.
Disclaimer:
This article was written for the CANDLE Computer Report and refers to specific CANDLE products. Functionally equivalent products are certainly an option.
Abstract:
This article introduces a RACF-familiar administrator to the security events within UNIX and hopefully introduce a UNIX-familiar administrator to how RACF (and OpenEdition/MVS) reports related security events.
Disclaimer:
This article was written for the CANDLE Computer Report and refers to specific CANDLE products. Functionally equivalent products are certainly an option.

Please send any comments or feedback to:

mhahnbe@pobox.com