Resources

On-Demand Webinar

Getting Started with IBM i Security: User Privileges

By Robin Tatam

Get up to speed on special authorities, command line access, and auditing user activities

On-Demand Webinar

Controlling Insider Threats on IBM i

By Robin Tatam

Despite the avalanche of regulations, news headlines remain chock full of stories about data breaches, all initiated by insiders or intruders masquerading as insiders.

Blog

Using Field Procedures for IBM i Encryption

By Robin Tatam on Fri, 09/15/2017

Robin Tatam has fielded quite a few questions about how to encrypt IBM i data. In this quick video, he outlines your options and explains field procedures (FieldProcs).

Guide

Download "IBM i Encryption: How to Protect Your Database"

Learn your options for encrypting IBM i data. Sensitive information needs to be kept secret. That’s an indisputable fact for modern organizations, where sensitive information can include customers’ personally identifiable information, customer lists, and intellectual property. Encryption is widely recognized as the most effective way to ensure private information is accessible only by authorized...

Article

Audit Tested & Audit Approved Instant Authority!

By Robin Tatam on Fri, 03/24/2017

Introduced by IBM to support TCP/IP services, a profile swap allows a job to change midstream and run under a different profile than the one that started it.

Blog

Compare Powertech Encryption for IBM i to IBM's Cryptographic APIs for Encrypting Database Fields

By Bob Luebbe on Fri, 03/17/2017

If your organization is thinking about using (or is using) IBM's Cryptographic APIs (e.g. QC3ENCDT, Qc3EncryptData) for encrypting database fields, then this article is for you.

Article

Advantages of Powertech Encryption for IBM i Over the Complexities and Risks of Disk Encryption

By Bob Luebbe on Fri, 03/17/2017

Disk drive encryption may help you comply with PCI DSS, but you must follow strict requirements. Additionally, relying solely on disk drive encryption for data protection has serious potential risks that you should be aware of.

Blog

How “Smash and Grab” Compromises IBM i

By Robin Tatam on Wed, 03/08/2017

During an audit a few years ago, I revealed to the client’s security team that corporate payroll information on every employee, including the CEO, was being archived in an output queue (called PAYROLL) for weeks at a time. Due to poor configuration, this information was accessible to every employee.

Article

The Modern Alternative to Authority Adoption

By Robin Tatam on Wed, 03/08/2017

There are several considerations with authority adoption. Each is important but can usually be accommodated. But what is the effect if the program owner has the same or less privileges than the user that called the program?

Case Study

Hershey Entertainment Quickly Encrypts Credit Card Data with Powertech Encryption for IBM i

Hershey Entertainment & Resorts is a privately held company located in the tourist center of Hershey, Pennsylvania, and has entertainment, resort and commercial divisions. Earlier this year, Hershey learned that because the entertainment and resort operations accept credit cards for payment, they needed the information stored by their box office ticketing and reservations applications to be...

Case Study

Field-level Encryption Helps Retail Chain Achieve PCI Compliance

Love’s Travel Stops and Country Stores, a retail travel stop chain with over 210 locations in 34 U.S. states, processes approximately 200,000 credit card transactions on a daily basis. Needing to meet PCI standards, Love’s found in Powertech Encryption for IBM i a product to encrypt credit card numbers in a way that would satisfy PCI compliance auditors. “We need to be able to access credit card...

On-Demand Webinar

An Introduction to PCI Compliance on IBM Power Systems

By Robin Tatam

Complying with the PCI standard is a normal part of doing business in today’s credit-centric world. But, PCI applies to multiple platforms. The challenge becomes how to map the general PCI requirements to a specific platform, such as IBM i. And, more importantly, how can you maintain—and prove—compliance?

On-Demand Webinar

Audit and Control of Powerful Users on IBM i

By Robin Tatam

Discover the ways to control and audit the activity of powerful users, with a view to enhancing the integrity of your IBM i. With the proper controls in place, you can restrict even the most powerful users as required.

Guide

Download “Identity & Access Management for IBM i”

Insiders are responsible for 34 percent of data breaches—and insiders are also the most difficult threat to control control on IBM i. You can't lock them out completely because your IBM i users need at least some level of access to do their jobs. So, how do you ensure users have only the access they need without overburdening IT with manual processes that distract from other critical projects? We...

Blog

What Is a Profile Swap and How Can It Help Secure IBM i?

By Robin Tatam on Thu, 02/09/2017

In this short video, IBM i security expert Robin Tatam explains what a profile swap is and how it helps secure your system.

On-Demand Webinar

44 Percent of Your IBM i Users Can Do WHAT?!

By Robin Tatam

Your IBM i power users are one of your greatest assets. But on most systems, they're also one of your greatest security vulnerabilities. Find out how to regain control.

Blog

IT Security Compliance 101

By Robin Tatam on Sun, 08/21/2016

In this compliance 101 primer, we'll look at three high-profile breaches from the past year, each of which shows what can go wrong when data oversight isn't up to snuff. Along the way, we'll discuss some basic fixes that can help shore up network defenses.

Guide

Effective Log Management

IBM’s customers are turning to Power VM virtualization to consolidate multiple workloads onto fewer systems increasing server utilization and reducing cost. However a virtualized server landscape on several different IBM platforms (IBM Power Systems™, IBM System x®, and IBM BladeCenter®) may reduce hardware complexity but this puts a strain on supporting the entire lifecycle of analysis...

Guide

13 Tips to Write Secure Applications and Boost IBM i Security

Barely a day passes without new headlines reporting another cyber attack, policy violation, or data breach. Secretly, we breathe a sigh of relief that it happened to someone else, but most of us know that we’ll all eventually feel the impact in some capacity.

Guide

Two Factor Authentication for IBM i

Organizations facing a more advanced threat landscape and a complex regulatory environment require a solution which addresses the need for securely controlling access to existing systems and applications. In addition, this solution should not increase the workload on support, application providers or the end user.

Getting Started with IBM i Security: User Privileges

Controlling Insider Threats on IBM i

Using Field Procedures for IBM i Encryption

Download "IBM i Encryption: How to Protect Your Database"

Audit Tested & Audit Approved Instant Authority!

Compare Powertech Encryption for IBM i to IBM's Cryptographic APIs for Encrypting Database Fields

Advantages of Powertech Encryption for IBM i Over the Complexities and Risks of Disk Encryption

How “Smash and Grab” Compromises IBM i

The Modern Alternative to Authority Adoption

Hershey Entertainment Quickly Encrypts Credit Card Data with Powertech Encryption for IBM i

Field-level Encryption Helps Retail Chain Achieve PCI Compliance

An Introduction to PCI Compliance on IBM Power Systems

Audit and Control of Powerful Users on IBM i

Download “Identity & Access Management for IBM i”

What Is a Profile Swap and How Can It Help Secure IBM i?

44 Percent of Your IBM i Users Can Do WHAT?!

IT Security Compliance 101

Effective Log Management

13 Tips to Write Secure Applications and Boost IBM i Security

Two Factor Authentication for IBM i

Contact Information

Privacy Policy

Cookie Policy

Impressum