One of a firm's most valuable resources is its data: client lists, accounting data, employee information, and so on. This critical data has to be securely managed and controlled, and simultaneously made available to those users authorized to see it. The IBM® z/VSE™ system has extensive capabilities to simultaneously share the firm's data among multiple users and protect them. Threats to this data come from a variety of sources. Insider threats, as well as malicious hackers, are not only difficult to detect and prevent—they could have been using resources without the business even being aware that they are there.
This IBM Redbooks® publication was written to assist z/VSE support and security personnel in providing the enterprise with a safe, secure and manageable environment.
This book provides an overview of the security provided by z/VSE and the processes for the implementation and configuration of z/VSE security components, Basic Security Manager (BSM), IBM CICS® security, TCP/IP security, single sign-on using LDAP, and connector security.
Table of contents
Chapter 1. z/VSE and security
Chapter 2. z/VSE Basic Security Manager
Chapter 3. LDAP sign-on support
Chapter 4. Cryptography on z/VSE
Chapter 5. Secure Sockets Layer with z/VSE
Chapter 6. CICS Web Support security
Chapter 7. Connector security
Chapter 8. TCP/IP security
Chapter 9. Secure Telnet
Chapter 10. Secure FTP
Chapter 11. WebSphere MQ with SSL
Appendix A. Security APIs
Appendix B. Setting up and using Keyman/VSE