Simple & Efficient www.quick-software-line.com Audit and Security for IBM Power i
Dec 29, 2015
Simple & Efficientwww.quick-software-line.com
Audit and Security for IBM Power i
Simple & Efficientwww.quick-software-line.com
The Objective: the SECURITY
Quick-CSi
Control & Security for IBM i
Data & Object security with an Access Control and with a
Transaction Traceability process.
Simple & Efficientwww.quick-software-line.com
The Risk Exposure - IBM Power i
Communication with the other servers and with
different protocols (FTP, ODBC, DataQ, DDM/DRA…
etc)
Userslocal or remote
AccessIFS, Telnet, SQL, Query, Signon…
REGULATION
SOX – Bale3 – PCI – HIPAA – 21CFR – LSF…
Simple & Efficientwww.quick-software-line.com
The Functionnalities
ACCESS – Traceability of the connections to the
server (FTP, SQL, Telnet, …)
AUDIT – Traceability of the updates made on the system objects
DATABASE – Traceability of the
updates made on the DB files
Simple & Efficientwww.quick-software-line.com
Quick-CSi – Event (update) capture
AUDIT
Fonctions Système
Transactions
Travaux
DB Journal
Fonctions Système
Transactions
Travaux• FTP• SQ
L• …
Exit Point
s
CSi recording
Audit Journal allows to trace
every event related to the Object
Exit-Points create the needed
entries to « CSi »
DB Journal allows to trace every
event related to the Database
Simple & Efficientwww.quick-software-line.com
Quick-CSi – System & Object Traceability
PGM
• Every program (Interactive, Batch, and external access…) is concerned
• Whatever is the method, the Command, the program, the tool, …
System Audit Journal
& DB journnal
• Every transaction is audited and recorded
• The DB files are Journaled• Every object is controlled by the
Audit• Native function of the OS
ARCHIVING
• Save and Store EVERY information for queries, statictics and auditing
• Selection of the useful DB at the field level to minimize the disk space
• Automated Reports depending on defined filters
CSi database
AUDIT
Journal DB
Simple & Efficientwww.quick-software-line.com
Traceability of every type of transaction with Exit-Points Reliability of a fully secure audit (internal function of the
OS) Complementary aspects: CSi for the Traceability of the
data/object, EDD/HA for the availability of the data/object and the Commit-Control for the integrity of the data
Reliability of the archiving External archiving of every information to prepare the database for
queries
Clear and automated Reports Customized reports to highlight ONLY the critical transactions to
trace
Quick-CSi – System & Object Traceability
Simple & Efficientwww.quick-software-line.com
• Every DB critical file is managed
• Journaling « OnDemand » or management thru the existing Journal
• Multi-database archiving to isolate the applications (confidentiality)
• Reliability of the archiving/retrieve process
• Audit reports generator
Quick-CSi – Database Traceability
Simple & Efficientwww.quick-software-line.com
Automated report generator Reporting of the different type of the Audit information Reporting of the access (FTP, SQL,…) Detailed reporting of each type of information depending on
the settings, clear statistics generator Outputs filtering to minimize the size of the generated spool
files, and also to allow a faster read and a better analysis
Quick-CSi – Reporting and Efficiency
Graphical report Reporting generated by Quick-DOC as an option
Graphical PDF, email, … Archiving with key-index (Doc Finder)
Queries and requests with the GUI
Simple & Efficientwww.quick-software-line.com
AUDIT ENTRIES SYNTHESISPrinted on 2013/03/27 – 10:49:12
Code Description Nber of Entries ThresholdHighlight Overhead
From : 2013/03/26 – 19:00:00To : 2013/03/27 – 07:00:00
Simple & Efficientwww.quick-software-line.com
AUDIT ENTRIES ANALYSISPrinted on 2013/03/27 – 10:53:17
From : 2013/03/26 – 19:00:00To : 2013/03/27 – 07:00:00
Journal Entry : CD Description : User profile changed, created or restored
Date Heure Job Name Job User J. Nbr Object Library Obj. type
Reporting for one criteria
Simple & Efficientwww.quick-software-line.com
Quick-CSi – Query GUICustomized tab (by
criteria), saved for next requests
Customized filters,
OnDemand activation
One « Information » tab for the database
file description
Simple & Efficientwww.quick-software-line.com
Quick-CSi – Query GUI
Multiple access to the different
database information
Unique GUI for both Database and Audit
Traceability
Simple & Efficientwww.quick-software-line.com
Quick-CSi – Data External Exportation
The GUI is immediately available with any kind of Database (DB2/400, SQL Server, Oracle…)
Quick-EDD/DRm allows to replicate real-time DB2/400 to SQL DB
Csi Recording Csi Recording are available
with DB2/400 and SQL DB The GUI settings are valid
on whatever DB the user is requesting
CSi / SQL DB
DRm
Simple & Efficientwww.quick-software-line.com
Why Quick-CSi? Provide compliance to the regulation
Clear explanation of the transaction
Protect your system and your data (example)Finance : misappropriation
Salary : starting date, checking account, shares, false payroll, loan
Distribution : false pricing, max. credit limit, quantity delivery
Bank : dormant accounts, failed accounts management, empowerment, swifts
Supply : change of units, false exit of goods
Insurance : anticipated refund, false refund calculation
Supervision : TMA supplier, outsourcing
Development : bug and malfunction
Memory : client information, credit-card information, health files
Marketing : email campaign, confidentiality, rules
Quality : follow up of the information, pricing, logistic…
Simple & Efficientwww.quick-software-line.com
Pricing
Quick-CSi- Same pricing policy as Quick-EDD, one main license at 100% and the
secundary license(s) at 50%.- Each license is shipped with 2 Lpars activated- Each additional lpar license is at a third of its corresponding top-license price- Maintenance fee is at 18% of the price-list below, per year
Quick-Csi (starting price until Sept 2013)
P05 P10 P20 P30 P40 P50
5.400 6.900 12.300 18.900 27.000 36.000
Quick-DOC Graphical Report Option: 1.200