Thursday, August 7, 2014: 1:30 PM-2:30 PM
Room 316 (David L. Lawrence Convention Center)
Speaker:
Lin Overby(IBM Corporation)
There are many types of intrusion detection systems being deployed today, and each type has its own set of advantages. The z/OS Communications Server provides an integrated Intrusion Detection Service (IDS) for TCP/IP. Using the IDS, the Communications Server exploits its position as a communications endpoint, in order to detect attacks on z/OS that otherwise might go undetected by traditional network-based intrusion detection systems.
In this session we will describe the Communications Server IDS, and how it may be used to detect intrusion attempts against z/OS. The session will cover:
- The IDS architecture
- The types of attacks detected
- The defensive and notification actions that occur when an intrusion attempt is detected
- IDS policy configuration using the Configuration Assistant for z/OS Communications Server
Tracks: Network Systems, Security and Compliance, Security in the Enterprise and z/OS Systems Programming