Raz-Lee Security, a leading supplier of information security solutions for IBM Power i servers (iSeries/AS/400) together with its North American business partner, Software Engineering of America, participated in the IBM i Essentials Virtual Conference held on March 9-10th.

This unique online event included top-notch educational webcasts live from industry experts, exhibitor booths staffed with live team members holding online chats, and networking with industry peers. As many as 16 webcasts will be held, by Jeff Uehling from IBM, Mike Pavlak from Zend and others, covering all the information required for keeping up-to-date in the IBM i world. The show was attended by many prominent players in the AS/400 security market.

At the show, Raz-Lee and SEA showcased the iSecurity Compliance Evaluator solution, which enables managers to quickly check the compliance of their systems with industry and corporate policies using customizable user-friendly reports. In addition, Application Security, Authority on Demand, Native Object Security and User & System Value Replication solutions will be spotlighted.

“This virtual show extends the reach of a traditional conference, providing us with globe-spanning opportunities to show off our advanced technology,” said Eli Spitz, VP Business Development, Raz-Lee Security. “I am confident that in such a venue, our advanced Power i security solutions will generate far-ranging awareness.”

Raz-Lee Security will be participating in the 11th Information Security Conference, to be held on March 17^th, in Petach Tikva, Israel.

The conference will be attended by CEOs, IT Security managers and experts, IT Managers, Industrial companies’ managers, business development managers and others. A multitude of lectures will be offered by top experts from IBM, Juniper Networks, Bezeq Telecommunications and NetApp, as well as by the President of the Israeli IT Security and Auditing Association. In addition, a panel will be held on the subject of the Revolution in IT Security Regulation.

At the conference, Raz-Lee will showcase nuBridges Protect, a state-of-the-art encryption and tokenization solution distributed in Israel. nuBridges Protect secures sensitive data at rest in database fields, files, applications and associated backup storage, to help companies comply with mandates like the Payment Card Industry’s Data Security Standard (PCI-DSS) and government privacy acts.

This conference is Raz-Lee’s second local event this quarter, following the IT GRC (Government, Risk Management & Compliance) annual event in Tel Aviv on February 18th.

“Raz-Lee is highly active and well-established in Israel, boasting prominent customers, including the largest banks and health funds in the country,” said Eli Spitz, VP Business Development, Raz-Lee Security. “Our nuBridges Protect solution is the only solution in Israel combining both encryption & tokenization, and there is ever-growing interest in the solution among the leading enterprises in Israel.”

For more information (Hebrew) click here.

Getting PCI Compliant can be a hassle… or it can be a quick & effortless task. Find out how to easily check your Power i’s compliance status, customize a built-in report, receive summary or detailed reports, and much more. Click here to View the iSecurity Compliance Evaluator Demo

Raz-Lee Security (www.razlee.com), a leading supplier of information security solutions for IBM Power i (AS/400) Servers, announced a partnership to provide technology for Imperva’s SecureSphere Agent for DB2/400 (www.imperva.com), to be available in March 2010.

Imperva’s proven excellence in cross-platform analysis and reporting of database activity is unequaled in today’s market. These capabilities, together with Raz-Lee’s long-standing Power i security expertise, enable SecureSphere customers to enjoy seamless integration of Power i database security with similar functionalities on other platforms.

Raz-Lee’s technology embedded in SecureSphere Agent for DB2/400 enables SecureSphere to monitor all database activities, including Insert, Update, Delete and Read access to sensitive business data. This is achieved by tracking information sources such as the Power i audit journal (QAUDJRN), database journals or ODBC network requests.

“A large number of our customers and prospects expect Power i support.  Raz Lee provided the most robust and compelling platform support to the demands of Power i customers,” said Limor Elbaz, Vice President Corporate Development at Imperva.

“The choice of iSecurity by Imperva highlights Raz-Lee’s prominent market position in the area of Power i Application Security,” said Shmuel Zailer, CEO, Raz-Lee Security. “As the leading Power i security experts, we were able to provide Imperva with a complete and comprehensive audit trail of Power i database activities and all related information. In addition to SecuerSphere Agent for DB2/400 specific capabilities, Raz-Lee offers customers worldwide comprehensive Power i specific solutions for all security and compliance-related aspects of the Power i.”

 IBM Power i systems and databases are installed at hundreds of thousands of installation worldwide.

About Imperva

Imperva, the Data Security leader, enables a complete security lifecycle for business databases and the applications that use them. Over 4,500 of the world’s leading enterprises, government organizations, and managed service providers rely on Imperva to prevent sensitive data theft, protect against data breaches, secure applications, and ensure data confidentiality. The award-winning Imperva SecureSphere is the only solution that delivers full activity monitoring from the database to the accountable application user and is recognized for its overall ease of management and deployment. For more information, visit www.imperva.com.

Written by Shari Masafy
Email Shari Masafy at marketing@razlee.com
For more information visit www.razlee.com 

  The Banco di Sardegna, a major Italian bank, deployed the following iSecurity Power i Security products from Raz-Lee Security:

• User & Password Management
• Firewall
• System Control
• Screen
• Visualizer
• Action
• Audit
• Assessment

Click here to view the case study
Click here for more information on Raz-Lee & iSecurity
Email Raz-Lee at marketing@razlee.com

Raz-Lee’s iSecurity Anti-Virus product is based upon ClamAV, an open source toolkit. We often enconter questions from customers and distributors alike about its qualities, and about how it compares with commercial Anti-Virus solutions.

 So first – some basic info:

ClamAV is an open source (GPL) anti-virus toolkit for UNIX, designed especially for e-mail scanning on mail gateways. It provides a number of utilities including a flexible and scalable multi-threaded daemon, a command line scanner and advanced tools for automatic database updates. The core of the package is an anti-virus engine available as a shared library. For more information click here.  

 ClamAV has won the following awards:

• InfoWorld best of open source in security, September 10th, 2007
• 2006 SourceForge.net Community Choice Awards, April 5th, 2006
• Linux Format Magazine chose ClamAV as the best AV, January 16th, 2006

And most important –  ClamAV is held in high esteem by its users. Some examples of this can be viewed in ClamAV.net forum, where users expressed their appreciation for ClamAV:

On Tue, Nov 24, 2009 at 4:27 PM, Scott Mohnkern mohnkern@gmail.com wrote:

“In our particular environment (a government server farm), we were asked  to deploy the Mcafee virus scanning tools for Linux. After several months of  frustration, we concluded given our particular configuration (A very large Storage Area Network) that McAfee would never meet our needs.

We tested and deployed ClamAV across 63 machines with over 24 terabytes  of  network storage and have found that it fits our needs extremely well. We  don’t do “on the fly” scanning, but do scanning on a cycling basis per   machine, to avoid overtaxing our network”.

 On Fri, Dec 4, 2009 at 4:10 AM, Robin diilbert.atlantis@gmail.com wrote:

 ”…I tested < McAfee CommandLine > Scanner scanning a simple file and it was 10x slower than ClamAV. “ 

On Fri, Dec 4, 2009 at 5:32 AM, Dennis Peterson dennispe@inetnw.com wrote:

 <ClamAV> is so good that TrendMicro thought it worth going to court to stop it.

For more information on iSecurity Anti-Virus please contact marketing@razlee.com

Written by Shari Masafy, MarCom Manager at Raz-Lee Security.
Email Shari at marketing@razlee.com

I’d like to share a very informative article by Gary Palgon, who is VP Product Management at nuBridges, a leading data protection software vendor. The article clearly outlines the concept of tokenization, including examples of its implementation.

Click here to view the article.

Raz-Lee Security will be a sponsor in the upcoming CISO (Chief Information Security Officer) Conference. The event will take place on Wednesday 9 December in Tel Aviv, Israel.

Raz-Lee Security will give a presentation titled “How does Tokenization Assist Companies in Achieving PCI-DSS Compliance?”. The session will focus on the advantages of Tokenization for corporate data security and for minimizing the efforts invested in PCI Compliance. For instance, one major advantage of using Tokenization is that it can remove applications and databases from the scope of PCI DSS audits, yielding significant cost, complexity and time savings. In addition, the lecture will introduce nuBridges Protect – an award-winning encryption, tokenization and key management solution which Raz-Lee Security distributes in Israel – the first encryption and tokenization solution to be sold in this country.

The event will be held by the Israeli ICT (information and communications technology) forum managed by ThePeople, comprising 2500 members in the fields of industry, government, medicine, press, insurance, banking, communications and more. Up to 10 events are held annually, with panels, lectures and networking opportunities.

“Israel, renowned for state-of-the-art technology, is one of our strongholds, and we are proud to sponsor a key ICT event in this country,” said Eli Spitz, VP Business Development, Raz-Lee Security. “As in other areas in the world, PCI is rapidly penetrating Israeli corporate consciousness, and Israeli companies are searching for solutions which will enable them to minimize the efforts towards compliance. In this aspect, the nuBridges Protect solution we will be introducing at the CISO conference perfectly suits the Israeli market needs.”

Written by Shari Masafy
MarCom Manager, Raz-Lee Security
Email Shari Masafy at marketing@razlee.com

Raz-Lee Security, a leading supplier of information security solutions for the IBM Power i, has enhanced its iSecurity product suite with a new Native Object Security management module.

Defining security rights for native objects is the basis for all Power i security. However, these activities are work-intensive and therefore very susceptible to errors and oversights.

 iSecurity’s Native Object Security capabilities enable system administrators to easily define target security levels per object and object type, and to check for inconsistencies between actual and planned object security settings. They also enable using generic object names, and include full reporting features.

 Native Object Security capabilities include:

• Setting up multiple object security rules simultaneously, using generic naming capabilities
• Checking target (planned) settings with the current object security status, and showing inconsistencies
• Setting the current security status to the planned status
• Defining Object Owner, Authorization List, Primary Group, and specific user authorities (Add/Replace)
• Setting Audit value and Reset usage count
• Full reporting capabilities including OUTFILE

 ”We strive to maximize the user’s flexibility and variety of options,” said Eli Spitz, VP Business Development, Raz-Lee Security. “Accordingly, iSecurity supports both general and specific security settings, be it individual security levels for each and every object, or special temporary authorities for emergency cases. This allows the security settings to reflect the customer’s exact needs, with little or no constraints”.

Written by Shari Masafy, MarCom Manager at Raz-Lee
Email Shari Masafy at sharim@razlee.com

Raz-Lee Security has enhanced the iSecurity product suite with advanced User Profile & System Value Replication modules, including the ability to restore previously deleted user profile definitions.

The recent trend of consolidating servers has led to the increasing prevalence of multi-system and multi-LPAR shops. Companies have found it mandatory that system administrators and users alike synchronize user profile definitions, user passwords and system values between the different systems, allowing for exceptions as needed in Production, Test or Development systems. Such synchronization should be accomplished with minimum overhead to both the actual systems and the personnel mandated with managing user profile information.

As a result of the growing demand for data synchronization, Raz-Lee has added the following capabilities to iSecurity, its flagship Power i Security system:

• Flexible user-defined replication rules defining user profiles, passwords and parameters to be replicated

• Definition of destination system(s) for replication

• Bulk updates of user profiles

• Setting of System Values to optimal value or site-defined baseline values

• Replication of all, group or individual system values

• Collection & display of network-wide replication results

• Revival of deleted users, with an option to modify parameters

• Can be initiated from any system in the environment and does not require special commands

“We are excited to be able to offer our customers these important capabilities, which help streamline corporate IT tasks,” said Shmuel Zailer, CEO, Raz-Lee Security. “As top experts in the field of Power i security, it is our mission to continually improve iSecurity and allow our users maximum convenience and control of the system – with minimum overhead”.

Written by Shari Masafy, MarCom Manager at Raz-Lee Security
Email Shari Masafy at sharim@razlee.com