MVS Security and Audit Article Reprints by Mark S. Hahn
As a technical writer specializing in IBM mainframe MVS and security software (IBM's
RACF and Computer Associates' ACF2), I am pleased to offer reprints of some of my
articles. Please feel free to also visit my home page.
Last updated Saturday, January 04, 1997. But only to correct URL for Self-Documenting
MVS article.
The following articles can be found on the Web. Their abstracts are listed for your
review.
- Build a Self-Documenting MVS
- Data Security and SMF
- OpenEdition MVS: UNIX Meets RACF Part I
- OpenEdition MVS: UNIX Meets RACF Part II
- Abstract:
- Most systems programmers and IS auditors don't realize it is possible to use MVS
services to capture information documenting the parameter sets used to initialize the
system. This makes it much easier to determine the cause of system problems as well as to
audit the system. The article details four levels of self-documentation. Each has its own
set of advantages.
- Disclaimer:
- This article was written for the CANDLE Computer Report and refers to specific CANDLE
products. Functionally equivalent products are certainly an option. This article was also
reprinted in Enterprise Systems Journal and VIPNews.
- Abstract:
- Is your System Management Facility (SMF) a collection of valuable and useful information
or just a bunch of irrelevant data waiting to expire? Is there justification for each of
the records being collected and archived, or is it collected "just because"?
This article describes a strategy for reducing your volume of SMF data from three levels:
MVS itself, your security product (RACF, ACF2, or another), and from individual products
that may write their own SMF records.
- Disclaimer:
- This article was written for the CANDLE Computer Report and refers to specific CANDLE
products. Functionally equivalent products are certainly an option.
- Abstract:
- This article introduces a RACF-familiar administrator to the analogue controls
within UNIX and hopefully introduce a UNIX-familiar administrator to how RACF (and
OpenEdition/MVS) deal with UNIX controls.
- Disclaimer:
- This article was written for the CANDLE Computer Report and refers to specific CANDLE
products. Functionally equivalent products are certainly an option.
- Abstract:
- This article introduces a RACF-familiar administrator to the security events
within UNIX and hopefully introduce a UNIX-familiar administrator to how RACF (and
OpenEdition/MVS) reports related security events.
- Disclaimer:
- This article was written for the CANDLE Computer Report and refers to specific CANDLE
products. Functionally equivalent products are certainly an option.
Please send any comments or feedback to:
mhahnbe@pobox.com