Federated Identity Management Solutions
Federated Identity Management (FIM for z/OS) provides a simple, loosely coupled model for managing identity and access to resources that span companies or security domains. Rather than replicate identity and security administration at both companies, FIM for z/OS provides a simple model for managing identities and providing them with access to information and services in a trusted fashion. For companies deploying Service Oriented Architecture (SOA) and Web Services, FIM for z/OS provides policy-based integrated security management for federated web services. The foundation of FIM for z/OS is trust, integrity, and privacy of data.
|
 |
 |
|
System z & Enterprise Tape Encryption (US)
Find out why Jon Oltsik of ESG believes that tape encryption is long overdue and why he predicts it will become commonplace in the future. This 13 page white paper also discusses Enterprise Tape Encryption Architecture.
|
|
|
|
Financial Services Sector & Tape Encryption (US)
This white paper discusses Enterprise Tape Encryption requirements for the banking industry. It highlights the need for a combination of outboard encryption and a services-based tape encryption architecture.
|
|
|
|
Linux Utilities for IBM System z (US)
The Linux Utilities offer additional choices to assist in performing commodity?security processing. Firewall along with other perimeter technologies are areas where Linux and z/OS can work together to help provide a security-rich environment. Read more in the White Paper: Linux Utilities for IBM System z.
|
|
|
|
Encrypting Tape Storage (US)
Better tape security is a feature that many companies have sought to prevent the dangers inherent in tape distribution. Heeding this requirement, IBM™ System z™ developers and storage experts worked together to develop the latest encryption offerings.
Find out what else Shirley Savage has to say about tape encryption in the July/August 2006 issue of IBM Systems Magazine/Mainframe Edition (US).
|
|
|
|
Mainframe Intrusion-Detection Services - Intruders Beware! (US)
Mainframe edition July | August 2006
Security architects and corporate security officers are often faced with a common dilemma: opening the business to new opportunities by leveraging the Web, while balancing the need to protect information assets. Outside clients, hackers and even corporate employees can wreak havoc if there are security exposures in your IT infrastructure.
|
|
|
|
Risky Business - Mainframe Security Features Help Manage Risk (US)
Mainframe Magazine edition July | August 2006
Regulatory Compliance is changing the way we work across the IT spectrum. This article focuses on how these changes evolved and the mainframe technology that is in place today to address security requirements and regulatory compliance.
|
|
|
|
Encrypting Tape Storage -Taking the next step in mainframe-encryption capability (US)
Mainframe Magazine, July | August 2006
No matter what sector your business is in, this solution can help you protect your valuable data. And that's a comfort, especially with the growing number of laws aimed at protecting sensitive information.
|
|
|
|
Enterprise Strategy Group (ESG) Market Analysis
IBM expanded on its July System z9 announcement with its security-focused Encryption Facility for z/OS. The Encryption Facility for z/OS will help customers meet high priority business requirements by providing a business-to-business encryption solution and integrate with DFSMSdss for secure archiving. This security service sets the stage for a more comprehensive security strategy in the near future.
|
|
 |
Download the research brief (95KB)
|
|
|
|
IT Security - a critical key to business success
Security is more than a patch or a firewall. Having several layers of security, including perimeter defense - a control layer and an assurance layer in your IT environment makes good business sense. Read more in the Security eBook from IBM.
|
|
|
Download the eBook (2.18MB)
|
|
|
|
Building a Compliance-Based Network Admission Control and Remediation Solution (US)
This IBM Redbook discusses the IBM Integrated Security Solution for Cisco Networks, which offers a security-rich, policy-based security compliance and remediation solution for small, medium, and large businesses. |
|
|
|
|
Deployment Guide Series: IBM Tivoli Security Compliance Manager (US)
This IBM Redbook discusses the business context for security compliance management and it introduces the logical and physical components of Tivoli's solution offering. |
|
|
|
|
Security Solution: Certified on the Mainframe
z/OS 1.6 with the RACF® optional feature on IBM eServer zSeries systems achieved Controlled Access Protection Profile (CAPP) EAL3+ and Labeled Security Protection Profile (LSPP) EAL3+ compliance under the Common Criteria for Information Security Evaluation (CC). Learn how this strengthens your multilevel security strategy.
|
|
|
|
Get the latest information on z/VM security and integrity
This newly updated white paper not only includes the latest information on z/VM security and integrity but also provides guidance on security best practices.
|
|
|
Download the paper (120KB)
|
|
|
|
Redbook: MLS/DB2 implementation (US)
Multi-Level Security helps address government requirements for highly secure data. New Security features in DB2 V8 and z/OS 1.5 software can enable customers to have a highly secure single repository of data. |
|
|
|
|
Multi-Level Security: Your Key to Data Safety
by Jim Porell, Chief Architect for Infrastructure IBM Systems Group
Multi-level security, with its capacity for sharing resources across several security compartments, can help you protect intellectual property, simplify your environment and save you money. Read more from this chapter of The Black Book on Corporate Security. |
|
|
Download this chapter (338KB)
|
|
 |
How to order your own eBook or print copy
|
|
|
|
Exploring Open Source Security for a Linux Server Environment
This technical paper provides an overview of a three month study conducted by the Linux Test and Integration Center to deploy and compare various open source security tools currently available free in the industry. Solution recommendations based on installing, using and testing these open source security tools in an end-to-end security solution are documented along with details of product implementation.
|
|
|
Download the paper (1387KB)
|
|
|
|
Multi-Level Security Strategies
This white paper explores the impact of new secure information sharing requirements are having on agencies in the defense, intelligence and homeland security missions and how IBM is providing platforms for managing these new requirements. |
|
|
Find out more about this white paper |
|
|
|
Database on demand
When needing to replicate or move data to provide a new security container or isolation point, this article suggests labeling your data to gain additional security and deployment savings to your business.
|
|
|
Download the article (60KB)
|
|
|
|
Linux on System z Security
This white paper discusses the factors driving the demand for increased IT security and presents the comprehensive product and service offerings of IBM and its partners that run on System z systems and Linux. |
|
|
Download the white paper (732KB)
|
|
|
|
IBM Systems Journal: Security on z/OS (US)
This paper summarizes and explains the security functions available to a typical enterprise computing installation using the IBM z/OS operating system and Security Server.
|
|
|
|
|
z/OS WebSphere Application Server V5 and J2EE 1.3 Security Handbook (US)
Using working examples of code and configuration files, this IBM Redbook explains how you can run your Web-enabled applications with as high a level of security as other z/OS applications and subsystems--even if those applications were written or originally deployed on another platform. |
|
|
|
|
Establishing Information Security as a Business Enabler (US)
More than a protection against threats, viruses and intruders, security has evolved into a powerful tool for developing solutions that stimulate growth. But are you spending more energy and resources keeping the bad guys out than letting the good customers in? |
|
|
|
|
Security from Two Trusted Security Providers: Cisco and IBM (US)
IBM and Cisco have teamed up to deliver integrated products that will address some of the conflicting security realities that face organizations today and in the future: the need for greater openness and connectivity in the face of increasing security threats. |
|
|
|
|
Integrated Identity Management using IBM Tivoli Security Solutions (US)
This IBM Redbook provides a solution-oriented overview of using Tivoli's security products to provide an implementation for integrated identity management based on real-life customer experience. |
|
|
|
|
Linux on IBM System z and S/390: Best Security Practices (US)
This IBM Redbook discusses best security practices for running Linux as a z/VM guest on IBM System z and S/390 machines. This publication is intended for system administrators and IT architects responsible for deploying secure Linux servers running under z/VM. |
|
|
|
|
Enterprise Security Architecture Using IBM Tivoli Security Solutions (US)
This IBM Redbook looks at the overall Tivoli Enterprise Security Architecture, focusing on the integrated identity management solution covering authentication, authorization, provisioning and privacy, as well as risk management throughout extensive e-business enterprise implementations. |
|
|
|
|
On Demand Operating Environment: Security Considerations in an Extended Enterprise (US)
This IBM Redpaper is intended for IT architects. It is designed to help architects better understand the security issues introduced in an on demand environment. |
|
|
|
|
