Kentucky-Ohio-Indiana RACF Users Group


General Information:

KOIRUG was created in 2003 to serve the professional education needs of the RACF community in Kentucky, Ohio, and Indiana. We typically hold full-day meetings twice a year. KOIRUG usually meets in the Cincinnati area.


Points of Contact:

Barb Rhoads, Cincinnati Financial

Aaron Humphries, American Modern Insurance Group

Deborah Pearson, Navient

Bob Hansel, RSH Consulting, Inc.


Upcoming Meeting:


Thursday, May 10, 2018           *** Sponsored by ASPG ***


Location: Cincinnati Financial Corporation

6200 S. Gilmore Rd., Fairfield, Ohio 45014


Time: 9 a.m. - 3:30 p.m.          (Registration begins at 8:30 a.m.)


Cost: ** Free **



A Peek Inside the RACF Database

     Mark Nelson, IBM

A Fresh Look at Erase-on-Scratch

     Mark Nelson, IBM

RACF Monitoring & Reporting

     Robert S. Hansel, RSH Consulting

Network Security and SERVAUTH

     Peter Roberts, Vanguard Integrity Professionals

Roundtable Discussion: User Experiences with SIEMs



A Peek Inside the RACF Database

Inside your RACF data base are the options and profiles which define your security policy. How is this information organized and indexed? How is it accessed? What can you do to optimize its performance? In this session, we'll examine the contents and structure of the RACF database, explain the mysteries contained therein, and how the RACF IRRUT200, IRRUT400, and IRRMIN00 utilities are used to manage your RACF data base.


A Fresh Look at Erase-on-Scratch

Erase-on-Scratch was introduced with RACF 1.7 back in 1985. A recent RSH Consulting survey revealed that over 61% of z/OS RACF environments have not enabled any level of erase-on-scratch. Many installations are concerned with the potential performance impacts. Back in 1985, disk technology was much different than it is today. Since then, there have been many enhancements that make it worthwhile for installations to take a fresh look at erase-on-scratch and see if should be implemented. In this session, we discuss these enhancements and the risks of not enabling erase-on-scratch for all data sets.

RACF Monitoring & Reporting

Do you wonder if you are getting the full story on all the activity occurring in your RACF protected system? Come to this session to find out what RACF global options, profile settings, and macro operands govern the generation of SMF records. Learn about the SMF collection and reporting process, and how it affects the quality of your reports. We will also discuss the various reporting tools available for you to mine this data.


Network Security and SERVAUTH

Network access control with RACF is a weakly understood area and is an enterprise exposure if not properly protected. RACF and TCPIP have a robust mechanism consistent with the OSI Model to protect TCP and RACF functions using the SERVAUTH class. This session will give a high-level overview of networking, the OSI Model, and the corresponding RACF mechanisms to implement SERVAUTH profiles to enhance your organization's network security posture.


Roundtable Discussion: User Experiences with SIEMs

Come prepared to discuss the following questions. Are security-related SMF records on your z/OS mainframe sent to a SIEM? Who is the SIEM vendor? How does the SIEM help you monitor z/OS security?



Mark Nelson, IBM

Mark Nelson, CISSP, CSSLP, Senior Software Engineer, is a 35-year IBM veteran, having spent the past 30 years on the RACF Design team in Poughkeepsie, NY, working on auditing and data analysis (IRRDBU00, IRRADU00, RACFICE), RACF's Health Checks, RACF/DB2, support for encrypting access methods and RACF's support for digital certificates, among other projects. Mark started as student of electrical engineering at the Polytechnic Institute of New York (now a part of NYU) where he discovered the joy of programming on a System/360 Model 65 and quickly switched to computer science.


Robert S. Hansel, RSH Consulting

Robert S. Hansel is Lead RACF Specialist and founder of RSH Consulting, Inc. He began working with RACF in 1986 and has been a RACF administrator, manager, auditor, instructor, developer, and consultant. Mr. Hansel is especially skilled at redesigning and refining large-scale implementations of RACF using role-based access control concepts. He is a leading expert in securing z/OS Unix using RACF. Mr. Hansel has created elaborate automated tools to assist clients with RACF administration, database merging, identity management, and quality assurance.


Peter Roberts, Vanguard Integrity Professionals

Peter Roberts joined Vanguard's Professional Services team in January of 2012 and has more than 30 years of experience in Information Technology and Systems Programming. His extensive knowledge-base and expertise allow Peter to assist clients with ACF2/TSS migrations to RACF, z/OS and RACF assessments, RACF remediation projects, RACF training and Vanguard software implementations. Prior to joining Vanguard, Peter spent 18 years with IBM Global Services where he held a number of roles and responsibilities including Systems Programming, Security Administration, Business Controls (Auditing) and performed security related consulting services including ACF2 and RACF Security reviews, Security remediations and ACF2 / Top Secret to RACF security conversions. Due to his varied background, Peter has extensive experience across multiple verticals including government, retail, banking, distribution, manufacturing, utilities and finance. Peter serves a key role as part of the Vanguard Professional Services team providing RACF security assessments and remediation, ACF2 and Top Secret migration assessments and migration services. In addition, Peter provides training to customers attending Vanguard's annual security conference.



Contact Barb Rhoads

 - Phone: 513-870-2000 x4457

 - Email: Barb_Rhoads@cinfin.com


Advanced Registration is requested to ensure sufficient refreshments and handouts are available.



Cincinnati Financial is located on S. Gilmore a short distance north of the I-275 Cincinnati Beltway at Exit 39. Look for Forrest Park Exit North (Cincinnati Mills mall (Bass Pro Shop)). Cincinnati Financial is approximately one block north of the shopping mall on the right.


See www.mapquest.com for more information to get to the Cincinnati Financial. (This link takes you right to the site map.)


Park in the Visitor's parking in the front of the building. If no visitor spots are available, you may use the parking in the rear of the building.


See the receptionist in the main lobby upon entry to the building to sign in. If you enter at either of the rear entrances, you will be escorted to the main lobby. From the main lobby, you will be escorted to the meeting location.


For questions related to the meeting location, contact Barb Rhoads

 - Phone: 513-870-2000 x4457

 - Email: Barb_Rhoads@cinfin.com




Hotels in the immediate vicinity of Cincinnati Financial:

Hampton Inn - 513-942-3440

Comfort Suites - 513-825-9035

SpringHill Suites Cincinnati North Forest Park - 513-551-5028



Past Meetings Agendas:

Dates, sponsors, topics, and speakers from our past meetings.


RACF is a trademark of International Business Machines Corporation.

Webpage provided courtesy of RSH Consulting, Inc.