IP Security on z/OS

Recent well-publicized hacking attacks on major enterprises, together with the growing body of regulation and legislation such as HIPAA and PCI, have focused IT managers' minds on securing their infrastructure end to end. It is no longer acceptable to leave network security to the firewalls and routers out in the network; close protection of the mainframe with its most precious business assets has become a priority. This course teaches you the techniques and tools available to secure your z/OS systems against the multitude of -bad guys- trying to steal your assets or deny service to your customers.

• z/OS network systems programmers
• z/OS security administrators
• Technical managers responsible for z/OS security and/or networking

Basic knowledge of z/OS, TSO, ISPF and the TCP/IP protocol is assumed.

At the end of this course, delegates will be able to:

• Describe the security techniques used in a TCP/IP network
• Describe how these techniques are implemented on z/OS
• Protect access to TCP/IP and its servers using RACF
• Define and use digital certificates to facilitate cryptographic security
• Implement packet filtering, IPSec, Intrusion Detection and TLS using Policy Agent

Introduction to IT Security

Overview of Network Security

Cryptographic Techniques

The Crypto Standards: IPSec and SSL/TLS

z/OS Security Basics: SAF and the Policy Agent

Using SAF/RACF to Protect the Network

Using Policy Agent for Packet Filtering

Certificate Management in z/OS

Using Policy Agent for IPSec

SSL and TLS on z/OS

Intrusion Detection on z/OS