|
RACF - Definition and Overview |
|
|
RACF, short for Resource Access Control Facility, is an IBM software product. It is a security system that provides access control and auditing functionality for the z/OS and z/VM operating systems. Its primary market competitors have been ACF2 and TopSecret, both now produced by Computer Associates.
In addition to being one of the most mature and scalable security monitors in computing, it has some interesting features that are not often found in Microsoft Windows or UNIX environments. It can, for example, set permissions for file patterns — that is, set the permissions even for files that do not yet exist. Those permissions are then used should the file (or other object) be created at a later time. In other words, RACF establishes security policies rather than just permission records.
RACF has continuously evolved to support such modern security features as digital certificates / PKI services, LDAP interfaces, and (soon) case sensitive IDs/passwords. (The last is a reluctant concession to promote interoperability with other systems, such as UNIX and Linux.) The underlying zSeries hardware works closely with RACF. For example, digital certificates are protected within tamper-proof cryptographic processors. Major mainframe subsystems, especially DB2 Version 8, leverage RACF to provide multi-level security (MLS).
External links
- IBM RACF (http://www.ibm.com/eserver/zseries/racf)
|
|
Example Usage of RACF |
 |
pfonsecaq: @jcastrov ...pero el abogado de Bruce pegó el brincote xq el señor (lo mismo que Gloria Bejarano, RACF y tu tocayo Araya) quedó pringado. |
 |
targetrecruit: is looking for an Mainframe Security Specialist with RACF http://is.gd/5jDUO |
 |
ITStaffingINT: Ontwikkelaar/Activex, RACF, Z/os/Utrecht http://bit.ly/5NFsLi |
|
