SHARE in Anaheim

11198: The HMC Is a Fantastic Feature of the zEnterprise, but What Mistakes Are You Making Securing It?

Monday, August 6, 2012: 1:30 PM-2:30 PM
Platinum Ballroom Salon 8 (Anaheim Marriott Hotel)
Speakers: Paul Robichaux(NewEra Software, Inc.) and Barry Schrager(Xbridge Systems, Inc.)
Handouts
  • zCurrency is Your Currency - a z/OS Release Update (3.5 MB)
  • The HMC is a Fantastic Feature of the zEnterprise, but What Mistakes are You Making Securing It? (1.4 MB)
  • How to Detect Attempted Mainframe Intrusions (3.0 MB)
  • The Hardware Management Console (HMC) is a fantastic facility that allows an installation to configure and dynamically reconfigure the LPARs in one or more zEnterprise Systems.  But, the HMC can also issue any operator command you want, with no control by the External Security Manager.  So, can you vary a storage volume online? – sure!  Can you add an APF authorized library? – sure!  How many people have authorized access to the HMC?  25, 50, 150?  Can they access it remotely?  Do they need a Digital Certificate to do that? 

    It used to be that this kind of physical access was severely restricted because you had to be in the “Computer Room” to get to the console.  But, now, this old kind of access plus the ability to change configuration and even do it remotely, is available to many. 

    In this session, our speaker will go through the vulnerabilities of the HMC and what steps you should take to limit them at your site.

    Tracks: Data Center Modernization, Data Center and IT Management, Security and Compliance, z/OS Systems Programming and z/VM Systems Programming
    Share |




    See more of Project: Security and Compliance
    See more of Program: Enterprise Data Center