Jim Kaplan's AuditNet: THE audit source on the net


Information Systems Audit & Control Association - ISACA


Return to Top of Page

Return to Home Page

General Computer Security Sites

Sunsite

Computer Security Institute

Information Systems Security Association - ISSA

NaSPA Home Page

IBM Secureway web site

Return to Top of Page

Return to Home Page

IBM Mainframe Sites (not including RACF, which follows)

CBT Free mainframe software and great info source

GUIDE

SHARE

Return to Top of Page

Return to Home Page

Interesting Products

Permanently Interesting Products Column (formerly maintained in the RACF User News)

We have not evaluated these, but think every RACF shop should know about them.

• Sage DNA for RACF (maps privileges, helps simplify and cleanup your database and convert to role-based administration). For more info contact Ron Rymon at sage@eurekify.com or see the website at:
  http://www.eurekify.com. 
  
  
• NetQ's APPN-EE Firewall. For more info contact Peter Hager at p.hager@net-q.com or see the website at:
  http://www.net-q.com. 
  
  
• FTPalert from Williams Data Systems. Call Pete Milano at (703) 299-9739 or go to
  http://www.access360.com. 
  
  
• enRole from Access360. Call Debby Goldman at (212) 626-6724 http://www.access360.com. 
  
  
• The Security Bridge from Security Integration provides a patented method for linking RACF to legacy application security. For more info, call (800) 888-5031, or see www.securityintegration.com. 
  
  
• Blockade. Call Mike Forani at (888) 898-9949 or http://www.blockade.com. 
  
  
• PassGO (Formerly CKS) Call Amy Ricker (978) 635-1588 or www.passgo.com. 
  
  
• ASPG's Megacryption and ERG (Easy RACF Query). Call Cathy Thompson at (800) 662-6090 or cathyt@aspg.com  for more info.
  
  
• Technologic Software's Smart Security Administrator (formerly MegaSolve SSA) and Smart Security Reporter (formerly LT Technologies' Security Server SMF Reporting). Phone Bill Tomlinson at (949) 509-5000 for more info. OR http://www.megasolve.com 
  
  
• CONSUL/RACF including CICS Toolkit. Call (888) 323-0880 for information. On the Internet: http://www.consul.com 
  
  
• Allen System Group has acquired Entact Information Security and offers tools for: RACF Administration, RACF/SMF Auditing, and Enterprise Identity Management. For info call Brent Phillips at 1-817-652-6335 or see http://www.asg.com/products/identmgmt.asp 
  
  
• RACF Password Cracker Program, no longer free, but with more features than the free version. Email Peter Goldis at pgoldis@world.std.com or look at www.goldisconsulting.com 
  
  
• RA/2. Call Mario Labita at Software Engineering of America at (516) 328-7000.
  
  
• ICU MVS Penetration Analysis Tool and consulting from Janus Associates. Call (203) 251-0221 or www.janusassociates.com. 
  
  
• RtoR from Open Software Technologies. Call Everett Bowyer at (800) 226-3670 or http://www.open-softech.com/rtor.htm  for info.
  
  
• Beta System's software for RACF administration. Call (800) 777-9864 for more info. OR http://www.betasystems.com 
  
  
• Vanguard's Administrator and RIOVISION. Call (714) 939-0377 for more info. OR http://www.go2vanguard.com 
  
  
• SecurePass from Proginet to link RACF with Windows NT security. Call (516) 248-3366 for more info. OR http://www.proginet.com 

Return to Top of Page

Return to Home Page

RACF (IBM's Mainframe Security Software) Sites

http://www.geocities.com/steveneeland/Sort_Reports.html  Steve Neeland's RACF page Thierry Falissard's RACF page http://www.os390-mvs.freesurf.fr/nbsp;

Thierry Falissard's RACF page http://www.os390-mvs.freesurf.fr/nbsp;

Nigel Pentland's security page http://www.nigelpentland.co.uk 

IBM RACF home page:

IBM z/OS, including RACF: http://www-1.ibm.com/servers/eserver/zseries/zos/ 

Xephon's RACF site

IBM's RACF

IBM RACF Goodies Site

GARUG (Georgia RACF Users Group) [Site Under Construction, details coming soon]

RACF-L Discussion Group

RACF Password Cracker Program

To join the RACF list server, send E-mail to the administrator for the server with the words subscribe racf-l followed by your first name and last name.
(Don't send it to the server itself or your request will be routed to every subscriber.)
For example, if your name is John Smith and you want to subscribe, then send this E-mail:
subscribe racf-l john smith
The address to send this to is
LISTSERV@uga.cc.uga.edu
or
LISTSERV@UGA.BITNET
The reply will include directions on how to get info such as a list of all subscribers, an index to previous comments, and a command summary. Expect lots of E-mail every week.

Return to Top of Page

Return to Home Page

Seminar and Training Sites

• Tech Training Tips
  Security+ Training
  http://www.techtrainingtips.com/security+-training.html

• Seminars on: MVS, JCL, Various Programming Languages including JAVA, DB2, CICS, Oracle, and z/OS UNIX
  The Trainers Friend (Steven Comstock, (800) 993-8716
  http://www.trainersfriend.com

• Seminars on: HIPAA, Business Continuity Planning, CISSP Prep, and similar security topics
  DelCreo, Inc. (Cheryl Jackson, (281) 844-4715
  http://delcreo.com/delcreo/proeducation.cfm

• Seminars and User Group: IBM mid-range systems (AS/400)
  Washington Area Midrange group (KB Soni, (301) 590-7121
  http://www.wash-midrange.org/seminars.html

  
  

Return to Top of Page

Return to Home Page

Vendor and Product Specific Security Sites

Consul Risk Management (RACF and MVS, other IBM platforms)

Blockade

Lockstar PKI software

Proginet (RACF to Windows NT Password Synchronization)

RtoR (REXX to RACF) software

Beta Systems Enterprise Security Manager for RACF

MegaSolve (RACF Administration Software)

auditek (consulting)

JANUS Associates offers consulting in information security and business recovery planning. They also offer penetration/vulnerability assessment software for OS/390 - MVS operating systems using RACF.

Vanguard and RIOVISION (RACF Administration Software)

Return to Top of Page

Return to Home Page

"Stu presents the information in a clear concise manner. To the point where one thinks 'Oh, that's what that article was saying'"
---Delecia Lewis, NatWest Markets