Table of Contents
Advertisement
Commitment to system integrity
First issued in 1973, IBM's MVS
ment and subsequent statements for OS/390
stand as a symbol of IBM's confidence and commitment to
the z/OS operating system. Today, IBM reaffirms its com-
mitment to z/OS system integrity.
IBM's commitment includes designs and development
practices intended to prevent unauthorized application
programs, subsystems, and users from bypassing z/OS
security—that is, to prevent them from gaining access, cir-
cumventing, disabling, altering, or obtaining control of key
z/OS system processes and resources unless allowed by the
installation. Specifically, z/OS "System Integrity" is defined
as the inability of any program not authorized by a mecha-
nism under the installation's control to circumvent or disable
store or fetch protection, access a resource protected by
the z/OS Security Server (RACF), or obtain control in an
authorized state; that is, in supervisor state, with a protection
key less than eight (8), or Authorized Program Facility (APF)
authorized. In the event that an IBM System Integrity prob-
lem is reported, IBM will always take action to resolve it.
IBM's long-term commitment to System Integrity is unique
in the industry, and forms the basis of the z/OS industry
leadership in system security. z/OS is designed to help you
protect your system, data, transactions, and applications
from accidental or malicious modification. This is one of
the many reasons System z remains the industry's premier
data server for mission-critical workloads.
z/VM
The z/VM hypervisor is designed to help clients extend the
business value of mainframe technology across the enter-
prise by integrating applications and data while providing
exceptional levels of availability, security, and operational
ease. z/VM virtualization technology is designed to allow
the capability for clients to run hundreds to thousands of
System Integrity State-
™
and z/OS
®
Linux servers on a single mainframe running with other
System z operating systems, such as z/OS, or as a large-
scale Linux-only enterprise server solution. z/VM 5.3 can
also help to improve productivity by hosting non-Linux
workloads such as z/OS, z/VSE, and z/TPF.
z/VM 5.3 is designed to offer:
• Large real memory exploitation support (up to 256 GB)
• Single-image CPU support for 32 processors
• Guest support enhancements, including a z/OS testing
environment for the simulation and virtualization of zAAP
and zIIP specialty processors
• Support for selected features of the IBM System z10 EC
• Comprehensive security with a new LDAP server and
RACF feature, including support for password phrases
• Enhancements to help improve the ease-of-use of virtual
networks
• Management enhancements for Linux and other virtual
images
• Integrated systems management from the HMC
z/VSE
z/VSE 4.1, the latest advance in the ongoing evolution of
VSE, is designed to help address needs of VSE clients
with growing core VSE workloads and/or those who wish
to exploit Linux on System z for new, Web-based business
solutions and infrastructure simplification.
z/VSE 4.1 is designed to support:
• z/Architecture mode only
• 64-bit real addressing and up to 8 GB of processor
storage
• System z encryption technology including CPACF, con-
figurable Crypto Express2, and TS1120 encrypting tape
• Midrange Workload License Charge (MWLC) pricing,
including full-capacity and sub-capacity options.
7
Advertisement
Table of Contents
