Browse Prior Art Database

RACF/VM as a Security Server for VSE

IP.com Disclosure Number: IPCOM000105758D
Original Publication Date: 1993-Sep-01
Included in the Prior Art Database: 2005-Mar-20
Document File: 2 page(s) / 44K

Publishing Venue

IBM

Related People

Holder, KH: AUTHOR [+2]

Abstract

RACF is the common security solution for the operating systems VM and MVS. Disclosed is a method for incorporating RACF as the security solution for the operating system VSE, when it is running as a guest under the VM operating system.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 77% of the total text.

RACF/VM as a Security Server for VSE

      RACF is the common security solution for the operating systems
VM and MVS.  Disclosed is a method for incorporating RACF as the
security solution for the operating system VSE, when it is running as
a guest under the VM operating system.

      The Figure shows an outline of the implementation of the
RACF-based security solution in the VSE operating system.  Shown in
the Figure are a series of VSE guest machines 10, each of which is
running the VSE operating system, a guest virtual machine 20 for the
RACF administrator and a RACF guest virtual machine 30 running
RACF/VM.  The organization of the virtual machines is controlled by
the VM operating system 40.

      The RACF administrator running the guest machine 20 uses CMS
commands to send requests to the RACF virtual machine 30 which
controls the security of all the guest machines 10 in the system.
These requests are sent using the IUCV protocol which is a VM
communication protocol provided by VM operating system 40 to allow
communications between different virtual machines.

      A small subset of the IUCV protocol is provided in the VSE
operating system in order to allow the VSE operating systems to send
requests for security checking to RACF/VM and to allow the RACF guest
virtual machine 30 to answer back to virtual machines 10 running the
VSE operating system.  Within the VSE operating systems, macros are
provided which map the existing VSE security calls t...