Introduction to i5/OS Security

This presentation will introduce the security concepts of the system "i" server including user profiles, system values, securing data with object level authorities and more advanced topics such as group user profiles, special authorities and program adopted authority.  Attendees of this session will come away with a broad knowledge base for the security capabilities available on the system "i" server.

What’s New in V6R1 Security

This presentation will cover the wide range of security enhancements added by IBM in the V6R1 operating system release.  These enhancements include the ability to encrypt data on media (tape and virtual tape) and on disk, new intrusion detection and prevention enhancements along with a number of additional system integrity, audit and compliance related changes that are available for all customers.

Security – Best Practices

This presentation will cover the best practices necessary to security your system "i" server.  The presentation will discuss why you need to run at security level 50, including examples of security exposures that exist at the lower security levels, how to detect and prevent programs that could compromise security on your system, necessary system value settings and security recommendations when developing applications.  If you are a system administrator or system security officer, this session is a must for you to attend.

Kerberos/EIM & Single Signon

Does distributed authentication mean anything to you?  It should.  Kerberos is the default authentication mechanism for Windows Servers.  On i5/OS, Kerberos provided the authentication needed in your single sign-on environment.  Kerberos and Enterprise Identity mapping provide the infrastructure that makes single sign-on work.  This session will walk you through the underpinnings of single sign-on.  In this session you will learn about Kerberos, Kerberos tickets, How i5/OS uses Kerberos for authentication and how Kerberos and EIM together enable single sign-on support.

System “i” Audit Capabilities

i5/OS provides a plethora of options when it comes to auditing security related events on the server.  Many of us have shied away from auditing because, from a cursory view, auditing seems only to eat up disk space and generate far more data than a normal human can digest.  However, if we take a common sense approach to security auditing, it is possible to eliminate the drawbacks and get the vital information we need to properly manage the system.  This session will provide the attendees with education related to the security auditing options on the system "i" server, how to configure the audit of security related events and information related to the auditing of objects and users.

System “i” Cryptography

Security reports about data theft and recent legislation requirements have risen the demand for higher security. In many system i environments, products and services have been put in place to better control access to the system itself.  However, if somebody gained access to the system, the application data itself is normally stored in clear text.  Encryption is often recommended when transferring data on tape or as attachments to e-mail but is now becoming a requirement for securing data stored on the server itself.  i5/OS provides several options to protect sensitive information on disk by using encryption functions.  In this session attendees will learn the basics of encryption such as symmetric and asymmetric encryption, be provided with an overview of the available encryption functions in i5/OS and get an introduction to key management and implementation.