RACF

USERS

GROUP

KOIRUG

Kentucky-Ohio-Indiana RACF Users Group

 

General Information:

KOIRUG was created in 2003 to serve the professional education needs of the RACF community in Kentucky, Ohio, and Indiana. We typically hold full-day meetings twice a year. KOIRUG usually meets in the Cincinnati area.

 

Points of Contact:

Barb Rhoads, Cincinnati Financial

Aaron Humphries, American Modern Insurance Group

Deborah Pearson, Navient

Bob Hansel, RSH Consulting, Inc.

 

Upcoming Meeting:

 

Thursday, May 10, 2018           *** Sponsored by ASPG ***

 

Location: Cincinnati Financial Corporation

6200 S. Gilmore Rd., Fairfield, Ohio 45014

 

Time: 9 a.m. - 3:30 p.m.          (Registration begins at 8:30 a.m.)

 

Cost: ** Free **

 

Agenda:

A Peek Inside the RACF Database

     Mark Nelson, IBM

A Fresh Look at Erase-on-Scratch

     Mark Nelson, IBM

RACF Monitoring & Reporting

     Robert S. Hansel, RSH Consulting

Network Security and SERVAUTH

     Tony Nix, Vanguard Integrity Professionals

Roundtable Discussion: User Experiences with SIEMs

Presentation

Abstracts:

A Peek Inside the RACF Database

Inside your RACF data base are the options and profiles which define your security policy. How is this information organized and indexed? How is it accessed? What can you do to optimize its performance? In this session, we'll examine the contents and structure of the RACF database, explain the mysteries contained therein, and how the RACF IRRUT200, IRRUT400, and IRRMIN00 utilities are used to manage your RACF data base.

 

A Fresh Look at Erase-on-Scratch

Erase-on-Scratch was introduced with RACF 1.7 back in 1985. A recent RSH Consulting survey revealed that over 61% of z/OS RACF environments have not enabled any level of erase-on-scratch. Many installations are concerned with the potential performance impacts. Back in 1985, disk technology was much different than it is today. Since then, there have been many enhancements that make it worthwhile for installations to take a fresh look at erase-on-scratch and see if should be implemented. In this session, we discuss these enhancements and the risks of not enabling erase-on-scratch for all data sets.
 

RACF Monitoring & Reporting

Do you wonder if you are getting the full story on all the activity occurring in your RACF protected system? Come to this session to find out what RACF global options, profile settings, and macro operands govern the generation of SMF records. Learn about the SMF collection and reporting process, and how it affects the quality of your reports. We will also discuss the various reporting tools available for you to mine this data.

 

Network Security and SERVAUTH

Network access control with RACF is a weakly understood area and is an enterprise exposure if not properly protected. RACF and TCPIP have a robust mechanism consistent with the OSI Model to protect TCP and RACF functions using the SERVAUTH class. This session will give a high-level overview of networking, the OSI Model, and the corresponding RACF mechanisms to implement SERVAUTH profiles to enhance your organization's network security posture.

 

Roundtable Discussion: User Experiences with SIEMs

Come prepared to discuss the following questions. Are security-related SMF records on your z/OS mainframe sent to a SIEM? Who is the SIEM vendor? How does the SIEM help you monitor z/OS security?

 

Speakers:

Mark Nelson, IBM

Mark Nelson, CISSP, CSSLP, Senior Software Engineer, is a 35-year IBM veteran, having spent the past 30 years on the RACF Design team in Poughkeepsie, NY, working on auditing and data analysis (IRRDBU00, IRRADU00, RACFICE), RACF's Health Checks, RACF/DB2, support for encrypting access methods and RACF's support for digital certificates, among other projects. Mark started as student of electrical engineering at the Polytechnic Institute of New York (now a part of NYU) where he discovered the joy of programming on a System/360 Model 65 and quickly switched to computer science.

 

Robert S. Hansel, RSH Consulting

Robert S. Hansel is Lead RACF Specialist and founder of RSH Consulting, Inc. He began working with RACF in 1986 and has been a RACF administrator, manager, auditor, instructor, developer, and consultant. Mr. Hansel is especially skilled at redesigning and refining large-scale implementations of RACF using role-based access control concepts. He is a leading expert in securing z/OS Unix using RACF. Mr. Hansel has created elaborate automated tools to assist clients with RACF administration, database merging, identity management, and quality assurance.

 

Tony Nix, Vanguard Integrity Professionals

Tony has been an Information Security Professional for over 30 years with expertise in RACF and mainframe security technologies. Tony maintains a CISSP certification and received his Master of Science Information Technology degree from the University of Maryland University College and his Bachelor of Science Information Technology degree from the California State University Long Beach. Prior to joining Vanguard's Professional Services team, Tony completed a 20-year career with IBM servicing domestic and international security customers across government, financial, retail, services, and other industries. Tony has performed duties as a systems analyst, line and project manager, programmer, pre-sales technical support, and system deployment.

 

Registration:

Contact Barb Rhoads

 - Phone: 513-870-2000 x4457

 - Email: Barb_Rhoads@cinfin.com

 

Advanced Registration is requested to ensure sufficient refreshments and handouts are available.

 

Directions:

Cincinnati Financial is located on S. Gilmore a short distance north of the I-275 Cincinnati Beltway at Exit 39. Look for Forrest Park Exit North (Cincinnati Mills mall (Bass Pro Shop)). Cincinnati Financial is approximately one block north of the shopping mall on the right.

 

See www.mapquest.com for more information to get to the Cincinnati Financial. (This link takes you right to the site map.)

 

Park in the Visitor's parking in the front of the building. If no visitor spots are available, you may use the parking in the rear of the building.

 

See the receptionist in the main lobby upon entry to the building to sign in. If you enter at either of the rear entrances, you will be escorted to the main lobby. From the main lobby, you will be escorted to the meeting location.

 

For questions related to the meeting location, contact Barb Rhoads

 - Phone: 513-870-2000 x4457

 - Email: Barb_Rhoads@cinfin.com

 

Overnight

Accommodations:

Hotels in the immediate vicinity of Cincinnati Financial:

Hampton Inn - 513-942-3440

Comfort Suites - 513-825-9035

SpringHill Suites Cincinnati North Forest Park - 513-551-5028

 

 

Past Meetings Agendas:

Dates, sponsors, topics, and speakers from our past meetings.

 

RACF is a trademark of International Business Machines Corporation.

Webpage provided courtesy of RSH Consulting, Inc.