Find out about the new enhancements IBM has delivered in recent releases.

Written by Carol Woodbury

Editor's Note: This article introduces the webcast "Top Ten New Features of IBM i Security" available free to view at the MC Webcast Center.

The team at IBM has been busy integrating new and enhanced IBM i security features. Here are the highlights from V6R1, V7R1, and the Technology Refreshes since.

Despite a quality selection of auditing and compliance tools for IBM i, security problems in 2013 are largely "same old, same old."

Written by John Ghrist

Probably as much as two decades ago, when the IBM i was still the AS/400 and being touted as the most secure computing system in the world (mostly due its magnificent isolation), there were still security problems experts could point to. Primarily these were 1) not enough accountability for changes to databases, 2) too many users holding too-powerful security profiles, and 3) unauthorized users gaining access to systems (e.g., due to weak passwords).

Misconceptions are common regarding how users are granted command privileges.

Written by Robin Tatam

Editor's note: This article introduces the white paper "Managing Privileged Users on IBM i," free for download at the MC White Paper Center.

For years, analysts have predicted the demise of the platform whose heart beats in the chest of many of the world's largest organizations. But frustrated industry experts reject the notion that IBM i is outdated, citing highly scalable 64-bit Power-PC technology, class-leading reliability, and integrated security. Much of the controversy involves the "green screen," so IBM and many third-party solution providers have sought to provide users with a modern GUI to their IBM i applications.

Never heard of Application Administration? Don’t be surprised. Although it’s full of function, it’s one of little-known features of IBM i.

Written by Carol Woodbury

Editor's note: This article introduces the white paper "5 Ways to Control Access using Application Administration," free for download at the MC White Paper Center.

Application Administration (or App Admin as it’s commonly called) has been around for a while, but the additional features provided in the latest releases as well as recent Technology Releases make this a feature worth exploring again.

Carol Woodbury and her team refresh everyone's memory as to what PCI means to the IBM i.

Written by Skyview Partners

Editor's Note: This article is an introduction to the webinar "The 12 Sections of PCI DSS and How Each Relates to the IBM i" available free from the MC Webinar Center.

While one may think that the Payment Card Industry (PCI) is a thing of the past and that it's already been implemented, that's not the case. Some retailers are just beginning to understand how PCI applies to them, and other organizations have started to accept credit cards when they didn't in the past. The need to understand compliance with the PCI standard and just exactly what it translates into as far as the IBM i is concerned has left many shops wondering. You see, the PCI standard itself talks about "best practices" and uses very generic language in its descriptions, language that could apply to any computing platform.

Learn how role-based access can help you secure your sensitive information.

Written by Carol Woodbury

Editor's Note: This article is an introduction to the Webcast "5 Steps for Implementing Role-Based Access on the IBM i" available to view free from the MC Press Webcast Center.

A good place to start with a discussion of role-based access is by sharing some thoughts on just what the idea of access to computer information and controlling that access mean. When we speak of "access" to a computer, what we are referring to is the ability to do something with the computer—for example, to read, write, or change information. When you decide you need to "control access," what you are doing is explicitly enabling or restricting, in some way, the ability to read, write, or change information. Access controls can not only dictate who or what process may have access to specific information on a computer, it can also specify the type of access that is permitted.

If you have any interest in IBM i security, whether as an administrator, a programmer, or an auditor, then this book is the perfect resource.

Written by Robin Tatam

In this era of legislative and regulatory mandates, computer security has quickly become one of the most popular—and critical—initiatives for organizations of every size and in every business sector. Even those that are not forced to comply with an official directive should consider enhancing their security to ensure protection of their business data assets.

How secure is your system?

Written by PowerTech

Editor’s Note: This article is an excerpt from the PowerTech white paper “The State of IBM i Security 2012” available free from the MC White Paper Center.

Are my Power Systems servers running IBM i (aka System i, iSeries, AS/400) compliant with government and industry security regulations?

Is my data secure behind the walls of my Power Systems server? Are we able to detect fraud, data theft, and other deceptive behavior?

How do I secure my system in the most efficient and economical way?