Resources

News Article

TechChannel: Rising Stars Roundtable featuring Megan Olson

Fri, 12/01/2023

TechChannel Rising Star recipient, Megan Olson took part in a roundtable discussion to share her experience as a newcomer to the IBM i industry.

Case Study

Merchant Bank of Sri Lanka & Finance Relies on Powertech

Article

Key Management and Strong Encryption For PCI DSS Compliance With Powertech Encryption for IBM i

By Bob Luebbe on Tue, 12/29/2020

PCI DSS now includes requirements for strong encryption of cardholder data. Learn how key management is an essential element of preventing unauthorized data access.

Article

IBM i Cloud Security Considerations

Fri, 08/14/2020

As you consider taking your IBM i to the cloud, cybersecurity will no doubt top your list of concerns. And for good reason. It’s important to remember that the cloud is kind of a lie. Your sensitive data is simply being sent to someone else’s server, and that server has a physical location somewhere. Just like on-prem cybersecurity, IBM i cloud security can be divided into two parts: Regulatory...

Article

Empower Your Security Monitor with Powertech SIEM Agent for IBM i

By Robin Tatam on Wed, 08/28/2019

Typically, there are two main issues with monitoring a system manually: having to go out deliberately (and repeatedly) and check to see if something has happened; and the fact that you are most likely looking for the proverbial needle in a haystack of logged events.

Article

I Have All Object Authority And I’m Not Afraid To Use It!

By Sandi Moore on Thu, 06/27/2019

When it comes to security on IBM Power Servers running IBM i, a common challenge for many organizations is the number of users with too much power. These users can potentially circumvent application controls, override security restrictions for themselves and others, change critical server configuration settings, and even cover their tracks while they do it.

Article

I’ve Got *ALLOBJ Authority And I’m Not Afraid To Use It—Part 2

By Robin Tatam on Thu, 06/27/2019

While everyone likes to feel special, we need to be more selective when it comes to data access. As we discussed last month, many users have privileges far beyond their business requirements and simply need to have their access reduced to more reasonable levels.

Article

Remember the IFS!

By Robin Tatam on Thu, 06/27/2019

Ask any security professional which area of IBM i security is most often ignored and chances are that the unanimous response is a chorus of “the Integrated File System.” Although it’s been around since V3R1, the Integrated File System, or IFS, remains a shrouded mystery that represents significant risk to many IBM i organizations.

Article

Interacting with Powertech SIEM Agent for IBM i

By Robin Tatam on Thu, 03/21/2019

Your organization has invested in a security information event manager, or SIEM, to receive and analyse security and event log information from a variety of servers. Now they want to also get this information from their IBM Power Systems server.

Article

Protect the IBM i Command Line with Powertech Command Security for IBM i

By Robin Tatam on Fri, 03/24/2017

A user’s ability to execute commands in a green-screen environment is controlled by the limit capabilities (LMTCPB) parameter on their profile. Although without exit programs to extend IBM i security functions, even limited capability users could invoke commands through network interfaces such as FTP.

Article

Advantages of Powertech Encryption for IBM i Over the Complexities and Risks of Disk Encryption

By Bob Luebbe on Fri, 03/17/2017

Disk drive encryption may help you comply with PCI DSS, but you must follow strict requirements. Additionally, relying solely on disk drive encryption for data protection has serious potential risks that you should be aware of.

Article

The Modern Alternative to Authority Adoption

By Robin Tatam on Wed, 03/08/2017

There are several considerations with authority adoption. Each is important but can usually be accommodated. But what is the effect if the program owner has the same or less privileges than the user that called the program?

Article

Stay on Top of Security with Security Scan

By Robin Tatam on Wed, 03/08/2017

Security and compliance adherence has elevated in criticality over the past few years and has now taken its rightful place as a primary IT initiative, alongside virtualization and disaster preparedness. The necessity for better data protection has landed front-and-center in the public eye following some of the largest data breaches on record.

Article

What's New in Security for IBM i 7.2

By Robin Tatam on Wed, 03/08/2017

IBM i security expert Robin Tatam covers the new security functionality added to IBM i 7.2

Article

The Road To Security Starts with a Security Scan

By Robin Tatam on Wed, 03/08/2017

Sometimes, there are known vulnerabilities that clearly need to be mitigated as soon as possible—such as application users running with *ALLOBJ special authority. But, often there isn’t a thorough understanding of what’s wrong with a server’s configuration or what should be addressed first.

Article

How Object Integrity Scanning Enhances IBM i Security

Tue, 03/07/2017

IBM i has had superior built-in security features from the beginning. However, as internetworking increases and open protocols and servers become the norm, additional protection is needed.

Case Study

Hershey Entertainment Quickly Encrypts Credit Card Data with Powertech Encryption for IBM i

Hershey Entertainment & Resorts is a privately held company located in the tourist center of Hershey, Pennsylvania, and has entertainment, resort and commercial divisions. Earlier this year, Hershey learned that because the entertainment and resort operations accept credit cards for payment, they needed the information stored by their box office ticketing and reservations applications to be...

Case Study

Field-level Encryption Helps Retail Chain Achieve PCI Compliance

Love’s Travel Stops and Country Stores, a retail travel stop chain with over 210 locations in 34 U.S. states, processes approximately 200,000 credit card transactions on a daily basis. Needing to meet PCI standards, Love’s found in Powertech Encryption for IBM i a product to encrypt credit card numbers in a way that would satisfy PCI compliance auditors. “We need to be able to access credit card...

Article

Writing a Secure IBM i Application (and 13 ways to check it twice)

By Robin Tatam on Tue, 02/28/2017

Barely a day passes without new headlines reporting another cyber attack, policy violation, or data breach. Secretly, we breathe a sigh of relief that it happened to someone else, but most of us know that we’ll all eventually feel the impact in some capacity.

Article

iSeries Penetration Testing

Sun, 12/11/2016

Simple penetration tests help determine if a policy breach will be prevented and ensure that interested parties receive alert notifications. Failed tests might be indicative of a problem with product activation, or an incorrect or outdated Exit Point Manager IBM i rule set.

TechChannel: Rising Stars Roundtable featuring Megan Olson

Merchant Bank of Sri Lanka & Finance Relies on Powertech

Key Management and Strong Encryption For PCI DSS Compliance With Powertech Encryption for IBM i

IBM i Cloud Security Considerations

Empower Your Security Monitor with Powertech SIEM Agent for IBM i

I Have All Object Authority And I’m Not Afraid To Use It!

I’ve Got *ALLOBJ Authority And I’m Not Afraid To Use It—Part 2

Remember the IFS!

Interacting with Powertech SIEM Agent for IBM i

Protect the IBM i Command Line with Powertech Command Security for IBM i

Advantages of Powertech Encryption for IBM i Over the Complexities and Risks of Disk Encryption

The Modern Alternative to Authority Adoption

Stay on Top of Security with Security Scan

What's New in Security for IBM i 7.2

The Road To Security Starts with a Security Scan

How Object Integrity Scanning Enhances IBM i Security

Hershey Entertainment Quickly Encrypts Credit Card Data with Powertech Encryption for IBM i

Field-level Encryption Helps Retail Chain Achieve PCI Compliance

Writing a Secure IBM i Application (and 13 ways to check it twice)

iSeries Penetration Testing

Contact Information

Privacy Policy

Cookie Policy

Impressum