|System z on Facebook
System z continues to reign as the Ultimate Security Platform
Megan Moyer 110000GJAE firstname.lastname@example.org | | Tags:  ec12 encryption_key_management ibm_security iod racf tom_turner qradar infosphere_guardium zsecure_suite guardium optim | 8,255 Visits
Vice President of Marketing - IBM Security Systems
The mainframe has a rich and proven legacy of providing an industrial strength combination of hardware and software security functions that form the foundation for hosting an enterprise’s mission critical production applications and data bases. Mainframes have been delivering a secure infrastructure since 1964 when the S/360 was announced, continuously improving upon the mainframe as the ultimate security platform. This drumbeat continues with the new EC12 enhancements.
To start with, mainframes are built on a set of hardware security capabilities that include multi-state operation modes, storage key isolation, high speed standards-based encryption, logical partitions, and more. Many organizations take advantage of the new hybrid systems and virtual machine capabilities to consolidate workloads and securely host private clouds.
Building on the hardware foundation is the z/OS operating system with software security capabilities such as Resource Access Control Facility (RACF) and Integrated Cryptographic Service Facility (ISCF). They provide the fundamental support for protecting DB2 database applications, IMS transaction systems, and WebSphere portals making System z the ultimate server hosting banking, financial, insurance, healthcare, retail, and other industries that depend on secured continuously available systems.
The explosion of data and new client engagement models make data protection a critical concern. Hardware encryption provides the most basic protection of data, Encryption Key Management products can simplify and automate encryption life cycle management. Software data security solutions from IBM InfoSphere Guardium and Optim can protect data with a combination of discovery, classification, access control, real time monitoring, forensic data mining, compliance privacy and encryption capabilities. IBM can help provide comprehensive proactive protection of data at rest, in motion and in use.
IBM Security solutions provide additional user provisioning, access controls, and audit capabilities for managing risk and compliance on Linux on System z. Also, z/OS with RACF can establish trust across domains in an enterprise including a rich PKI services solution for digital certificate authentication. IBM zSecure suite helps organizations better deal with the scope and complexity of mainframe security by helping to automate identity access management, enforce security policy, analyze events and configuration information to detect threats, and customize audit and compliance reporting for enhanced security intelligence.
New zSecure integration with QRadar SIEM provides enterprise security intelligence with full visibility and actionable insight to protect IT assets from a wide range of advanced threats. By collecting security events not only from the mainframe but also from hundreds of other log and flow sources such as security devices, network devices, firewalls, operating systems and applications to provide a unified view of security and compliance risks.
As time goes on, System z continues to deliver state-of-the art integrated security hardware and software that can be relied on to host mission critical workloads with continuous availability and resiliency unmatched in the industry. Long may the mainframe reign as the ultimate security platform. Learn more about System z security.