SECURITRE An interface between the ADABAS/NATURAL environment and a System Security Facility (SSF), such as RACF, ACF2, or TOP SECRET SECURITRE is a product.

Download Report

Transcript SECURITRE An interface between the ADABAS/NATURAL environment and a System Security Facility (SSF), such as RACF, ACF2, or TOP SECRET SECURITRE is a product. 

SECURITRE
An interface between the ADABAS/NATURAL
environment and a System Security Facility (SSF),
such as RACF, ACF2, or TOP SECRET
SECURITRE is a product of
Treehouse Software, Inc. (TSI)
All rights reserved.
SECURITRE
1
What is SECURITRE?
 A security interface
 Comprehensive controls for:
- ADABAS
- NATURAL
- Utilities
- Internal Application Functions
SECURITRE
2
Why SECURITRE?
 RACF, ACF2, and TOP SECRET (SSFs) do not secure
ADABAS/NATURAL resources
 ADABAS password mechanism lacks accountability
 ADAESI does not secure NATURAL or Utilities
 NATURAL Security does not interface to the SSFs
 Security coded in applications can be costly and
difficult to maintain
 “Orange Book” places higher trust in systems with
single security rule base
SECURITRE
3
Control without SECURITRE
RACF, ACF2, or TOP
SECRET
NATURAL Security
System
Non-ADABAS data
Non-NATURAL programs
NATURAL
NATURAL programs
ADABAS
Password Security
ADABAS data
SECURITRE
ADABAS Utilities
NATURAL Utilities
Application Functions,
Menus, etc.
4
Control with SECURITRE
RACF, ACF2, or TOP SECRET with SECURITRE
Non-ADABAS Data
Non-NATURAL Programs
ADABAS Data
NATURAL
NATURAL Programs
ADABAS Utilities
NATURAL Utilities
Application Functions, Menus, etc.
SECURITRE
5
SECURITRE Components
 SECURITRE for ADABAS
 SECURITRE for NATURAL
 NSS Conversion Facility
 SECURITRE for Utilities
 SECURITRE Real-time Monitor
 SECURITRE Internal Application Security
SECURITRE
6
SECURITRE for ADABAS
 Implemented as a User-Exit-1 to the ADABAS nucleus
 Co-exists with other ADABAS User-Exits
 Security on these levels:
 Database
 File Level
 Field Level
 Unauthorized access returns Response Code 200 (ADABAS
Security Violation)
 Includes intelligent table mechanism
 ADABAS utility tables for use by the newest releases of
ADABAS (i.e., V6.x, V7.x and V8.x)
SECURITRE
7
Overview of SECURITRE for ADABAS
RACF
SYS1.PROCLIB
ADABAS.PROD.PAYROLL
NATURAL.LOGON.BENE1
...
User
SVC
Link
Routine
SECURITRE
User-Exit-B/A
SECURITRE
SVC
ADABAS
Nucleus
SECURITRE
User-Exit-1/4
ADABAS
Data
8
Program Pathing
 Ensures that access comes not only from authorized users,
but through authorized “routes”
 Limits access by combinations of:
 Filename
 MVS Jobname
 Node or SMFID of calling program
 NATURAL Library
 Program name (NATURAL or Non-NATURAL)
 FUSER DBID/FNR of calling program
 CICS Tranid and/or Termid
 ADABAS Command Code (e.g., S1)
SECURITRE
9
SECURITRE for NATURAL
 Implemented as a set of exits to the NATURAL nucleus
 Security at these levels:
NATURAL Session Initialization
Library (Logon)
Program (EDIT, SAVE, CAT, or STOW)
Program Execution (RUN)
DDM Access
 8-Steplib support for NATURAL V2.2, V2.3 and higher
SECURITRE
10
NATURAL Security Conversion Facility
 Implemented as a NATURAL application which reads
the FSEC file
 Allows for a smooth transition from Software AG’s
NATURAL Security System to SECURITRE for
NATURAL
 Aids in building the necessary SSF rules based on
site standards
 Aids in configuring SECURITRE for NATURAL
SECURITRE
11
SECURITRE for ADABAS Utilities
 Implemented as a statically linked front-end to
ADARUN module
 Controls, for each user, access by:
 ADABAS Utility
 ADABAS Utility Function
 DBID
 File
SECURITRE
12
SECURITRE for NATURAL Utilities
 Implemented through User-Exits to the NATURAL
nucleus
 Integrated with SECURITRE for NATURAL
 Controls access for each user by:
 NATURAL Utility
 NATURAL Library
SECURITRE
13
SECURITRE Real-time Monitor
 Implemented as a standard NATURAL application which
communicates with SECURITRE
 Access is co ntrolled by SECURITRE
 Provides these important functions:
 Purges one or all users from internal tables
 Displays current SECURITRE parameter settings and table
sizes
 Reloads parameters for SECURITRE for ADABAS
 Reloads SECURITRE User-Exits
 Activates/Deactivates SECURITRE Trace Facility
 Invokes the TRIM RTM
SECURITRE
14
SECURITRE RTM Main Menu
12/31/99
11:38:00
S E C U R I T R E V E R S I O N
3 . 1 . 0
R E A L - T I M E
M O N I T O R
Code
---A
B
C
D
E
F
G
H
I
.
---Code: _
CEW1
STRV310
Function
---------------------------------Force one user from table
(FRC1)
Force all users from table (FRCA)
Display SECURITRE parms
(PARM)
Reload user exit(s)
(REXT)
Reload SECURITRE parms
(RPRM)
SECURITRE trace facility
(TRAC)
Invoke the TRIM RTM
(TRIM)
Display SECURITRE/NAT parms (NPRM)
Display current table sizes (TBLS)
Exit Real-time Monitor
(STOP)
---------------------------------DBID : 1000
TEST-DB
Direct Command: ____
MENU
Enter-PF1---PF2---PF3---PF4---PF5---PF6---PF7---PF8---PF9---PF10---PF11---PF12
HELP
MENU
EXIT
SECURITRE
15
Display SECURITRE Parameters
12/31/99
11:38:00
PARM
DBID : 202
S E C U R I T R E
DISPLAY STRDEF PARAMETER
TEST-DB
File : 0
CLASS :
CMDLOG :
DELIM :
DSNORDR:
DATASET
OFF
.
FILE CMD DBID
JOB NPGM
EX1ALL :
FLSDEL :
FORCE :
FORMAT :
LOGVIOL:
MODE
:
NOIDRED:
NOIDUPD:
N20PREF:
PREFIX :
OFF
DELETE
18
NEW
FIRST
FAIL
ACCEPT
ACCEPT
CONTROL.N2O
TSI.SECURTRE
PURINTT
PURINTV
QUALIFY
RACHECK
RTMORDR
PROCCL
PROCEX2
SECURE
STREX1
STREX2
STREX3
STRRTM
TERM
TRACE
TRMRTM
UEXIT1
:
:
:
:
:
:
:
:
:
:
:
:
:
:
:
1
100
EDTST
RACHECK
FUNC DBID
OFF
OFF
RACF
USERID
USERID2
USERS
UTMODE
UTPREF
UTORDER
CEW1
STRV310
:
:
:
:
:
:
TRIMV5
TRIMV5
10
WARN
UTPREF
FILE UTIL
ADABAS.STR
S
ON
ADABAS.TRM
Enter-PF1---PF2---PF3---PF4---PF5---PF6---PF7---PF8---PF9---PF10---PF11---PF12
HELP ---- MENU ---- ---- ---- ---- ---- ---- ------EXIT
SECURITRE
16
Application Function Security
 Implemented as two subprograms:
 STRNAT for NATURAL applications
 STRASM for Non-NATURAL applications
 Used by sites to add special controls to applications
 Example: Limit items displayed on an application’s menus to
those the user is authorized to execute
 Uses SECURITRE as a “Security Server” for applications
 Can replace existing security functions embedded in
applications
SECURITRE
17
Interface to SSF
 Uses SAF protocol (RACROUTE macro)
 Translates ADABAS/NATURAL entities into “pseudo dataset
names”:
 ADABAS.D110.F123
 ADABAS.PROD.PAYROLL
 NATURAL.LOGON.HRLIB
 NAT.PROD.EDIT.PAYLIB.PAYPGM
 ADABAS.UTIL.DBS.RESETDIB
 PAYAPP.FUNCTION.PRTCHECK
 Violations are logged by the SSF
SECURITRE
18
Defining ADABAS Resources to the SSF
ADABAS/NATURAL resources are defined just like any MVS
dataset:
RACF
PERMIT ‘ADABAS.PROD.PAYROLL’
ID(DBAGROUP) ACCESS(ALTER)
ACF2
$KEY(ADABAS)
PROD.PAYROLL UID(CHFSPPRG) R(A) W(A)
TOP SECRET
TSS PERMIT (DBAGROUP)
DSN(‘ADABAS.PROD.PAYROLL’)
ACC(UPDATE)
SECURITRE
19
Operating Environment
 Supports MVS/ESA, MVS/XA, OS/390 (MVS), and OS/VS1
 Runs under any TP system which supports ADABAS and
NATURAL
 Conforms to the site’s SSF dataset naming conventions
 Integrated with TRIM and N2O from Treehouse Software
 Supports calls originating from other platforms
SECURITRE
20
Conclusion
 Comprehensive
 Powerful
 Flexible
 Efficient, minimal impact on performance or
response times
 Promotes single security rule base
 Improves accountability
SECURITRE
21
Conclusion (continued)
 Requires no changes to applications or data
 Reduces training costs
 Simplifies security administration and reporting
 Protects against accidental or intentional sabotage of
data and programs
 Eliminates the need for separate security
options/packages
SECURITRE
22