Site Map   |   Contact Us


Home
SHARE in Anaheim

8352: RACF Identity Propagation

Friday, March 4, 2011: 9:30 AM-10:30 AM
Room 207A (Anaheim Convention Center)
Speaker: Mark Nelson (IBM Corporation)
Handouts
  • share_2011_02_idprop.pdf (440.7 kB)
  • In today’s distributed environments, end users are known by their Internet or distributed user identities, but the z/OS Security Server deals only with RACF user IDs. As a transaction flows from the z/OS subsystems (such as CICS® and IMS™) to RACF, an application may associate all users with a single shared RACF identity. Some applications do this to avoid having to force every user to authenticate, but this approach can compromise end-user accountability.

    To address this problem, RACF has, in z/OS V1R11, introduced an identity propagation function. z/OS identity propagation makes the identity of the end user securely available to the back-end business logic program and transaction processing z/OS subsystems, at the application and security-domain level.

    Tracks: Security Administration
    Share |




    See more of Project: Security and Compliance
    See more of Program: Enterprise Data Center