Simple & Efficient Audit and Security for IBM Power i.

Simple & Efficientwww.quick-software-line.com

Audit and Security for IBM Power i


The Objective: the SECURITY

Quick-CSi

Control & Security for IBM i

Data & Object security with an Access Control and with a

Transaction Traceability process.


The Risk Exposure - IBM Power i

Communication with the other servers and with

different protocols (FTP, ODBC, DataQ, DDM/DRA…

etc)

Userslocal or remote

AccessIFS, Telnet, SQL, Query, Signon…

REGULATION

SOX – Bale3 – PCI – HIPAA – 21CFR – LSF…


The Functionnalities

ACCESS – Traceability of the connections to the

server (FTP, SQL, Telnet, …)

AUDIT – Traceability of the updates made on the system objects

DATABASE – Traceability of the

updates made on the DB files


Quick-CSi – Event (update) capture

AUDIT

Fonctions Système

Transactions

Travaux

DB Journal

Fonctions Système

Transactions

Travaux• FTP• SQ

L• …

Exit Point

s

CSi recording

Audit Journal allows to trace

every event related to the Object

Exit-Points create the needed

entries to « CSi »

DB Journal allows to trace every

event related to the Database


Quick-CSi – System & Object Traceability

PGM

• Every program (Interactive, Batch, and external access…) is concerned

• Whatever is the method, the Command, the program, the tool, …

System Audit Journal

& DB journnal

• Every transaction is audited and recorded

• The DB files are Journaled• Every object is controlled by the

Audit• Native function of the OS

ARCHIVING

• Save and Store EVERY information for queries, statictics and auditing

• Selection of the useful DB at the field level to minimize the disk space

• Automated Reports depending on defined filters

CSi database

AUDIT

Journal DB


Traceability of every type of transaction with Exit-Points Reliability of a fully secure audit (internal function of the

OS) Complementary aspects: CSi for the Traceability of the

data/object, EDD/HA for the availability of the data/object and the Commit-Control for the integrity of the data

Reliability of the archiving External archiving of every information to prepare the database for

queries

Clear and automated Reports Customized reports to highlight ONLY the critical transactions to

trace

Quick-CSi – System & Object Traceability


• Every DB critical file is managed

• Journaling « OnDemand » or management thru the existing Journal

• Multi-database archiving to isolate the applications (confidentiality)

• Reliability of the archiving/retrieve process

• Audit reports generator

Quick-CSi – Database Traceability


Automated report generator Reporting of the different type of the Audit information Reporting of the access (FTP, SQL,…) Detailed reporting of each type of information depending on

the settings, clear statistics generator Outputs filtering to minimize the size of the generated spool

files, and also to allow a faster read and a better analysis

Quick-CSi – Reporting and Efficiency

Graphical report Reporting generated by Quick-DOC as an option

Graphical PDF, email, … Archiving with key-index (Doc Finder)

Queries and requests with the GUI


AUDIT ENTRIES SYNTHESISPrinted on 2013/03/27 – 10:49:12

Code Description Nber of Entries ThresholdHighlight Overhead

From : 2013/03/26 – 19:00:00To : 2013/03/27 – 07:00:00


AUDIT ENTRIES ANALYSISPrinted on 2013/03/27 – 10:53:17

From : 2013/03/26 – 19:00:00To : 2013/03/27 – 07:00:00

Journal Entry : CD Description : User profile changed, created or restored

Date Heure Job Name Job User J. Nbr Object Library Obj. type

Reporting for one criteria


Quick-CSi – Query GUICustomized tab (by

criteria), saved for next requests

Customized filters,

OnDemand activation

One « Information » tab for the database

file description


Quick-CSi – Query GUI

Multiple access to the different

database information

Unique GUI for both Database and Audit

Traceability


Quick-CSi – Data External Exportation

The GUI is immediately available with any kind of Database (DB2/400, SQL Server, Oracle…)

Quick-EDD/DRm allows to replicate real-time DB2/400 to SQL DB

Csi Recording Csi Recording are available

with DB2/400 and SQL DB The GUI settings are valid

on whatever DB the user is requesting

CSi / SQL DB

DRm


Why Quick-CSi? Provide compliance to the regulation

Clear explanation of the transaction

Protect your system and your data (example)Finance : misappropriation

Salary : starting date, checking account, shares, false payroll, loan

Distribution : false pricing, max. credit limit, quantity delivery

Bank : dormant accounts, failed accounts management, empowerment, swifts

Supply : change of units, false exit of goods

Insurance : anticipated refund, false refund calculation

Supervision : TMA supplier, outsourcing

Development : bug and malfunction

Memory : client information, credit-card information, health files

Marketing : email campaign, confidentiality, rules

Quality : follow up of the information, pricing, logistic…


Pricing

Quick-CSi- Same pricing policy as Quick-EDD, one main license at 100% and the

secundary license(s) at 50%.- Each license is shipped with 2 Lpars activated- Each additional lpar license is at a third of its corresponding top-license price- Maintenance fee is at 18% of the price-list below, per year

Quick-Csi (starting price until Sept 2013)

P05 P10 P20 P30 P40 P50

5.400 6.900 12.300 18.900 27.000 36.000

Quick-DOC Graphical Report Option: 1.200

Simple & Efficient Audit and Security for IBM Power i.

Documents

databasesimple efficientwww

different database

audit entries synthesisprinted

audit entries analysisprinted

cfr lsfsimple efficientwww

access control

type of information

different type