Raz-Lee’s Successful AP-Journal Product Expanded with New, Unique Features

Posted on January 25, 2012 by admin

Industry-unique support for Data Areas and IFS are no-cost additions to the DB2 audit trail product, AP-Journal.

First and foremost, AP-Journal supports sending “mass mode” real-time Syslog alerts regarding application field-level data changes to SIEM products, for example IBM/Tivoli, RSA enVision, IBM/Q1Labs, ArcSight, GFI, etc. This support sends only Syslog messages without any additional processing and has been measured to transfer up to 2000 transactions per second to SIEM products while using less than 1% CPU.

Click here for full details on the other additions

Raz-Lee Contributes FREE Anti-Virus Solution to AS/400 Community

Posted on January 16, 2012 by admin

Raz-Lee Security is offering the worldwide AS/400 community its recently-released 2012 Anti-Virus product for FREE with a permanent license.

iSecurity Anti-Virus is an AS/400-specific product that keeps the system clean of viruses, Trojan horses and malicious code. Anti-Virus incorporates the ClamAV open source anti-virus engine and is engineered to provide full protection to the server, its file contents and resident or dedicated software.

Click here for details on the offer and download instructions

iSecurity Now Supports QSH and PASE Logging, Reporting & Alerting

Posted on December 13, 2011 by admin

OS/400′s inability to log QSHELL activity left an opening in the overall IBM i auditing process and imposed a serious security risk to an organization. This lack of functionality has become significantly more serious with the ever-increasing use of this environment in IBM i shops. In response, Raz-Lee has developed the unique ability to log QSHELL for QSH and PASE in the IBM i.

Until now, people using native OS/400 could log standard OS/400 commands, but there was no way to log QSHELL commands. Now, companies using iSecurity Audit can run commands – entered during an interactive session as well as when entered as parameters in the QSH and STRQSH commands – that are part of the QSHELL environment to delete and write to files, create directories and more.

Click here to read the full details about iSecurity’s added support for QSH and PASE Logging, Reporting & Alerting

iSecurity Approved for IBM Tivoli Netcool/OMNIbus Certification

Posted on November 29, 2011 by admin

IBM has certified Raz-Lee’s iSecurity for integration with their Tivoli Netcool/OMNIbus, part of Tivoli’s Security Operations Manager, to consolidate complex IT and network operation management tasks. The integration with Tivoli’s SIEM capabilities will enable it to receive Syslog real-time alerts from iSecurity and to consolidate security event information from other IBM i servers, and indeed from multiple hardware platforms, into its single console environment.

Click here to read the full details about the new IBM Tivoli Certification

Verizon Business Report: Most Organizations Slipping out of PCI Compliance Within One Year

Posted on October 5, 2011 by admin

Interesting reading: This report states that out of 100 organizations which were certified as PCI compliant in 2010, 75 are no longer compliant in 2011!

To me this means that software such as Raz-Lee’s Compliance Evaluator needs to be used on an ongoing basis in order ensure compliance over time.

Also interesting are the “basic requirements” of PCI Compliance listed in the report, including many supported by Raz-Lee’s other products; these include using firewalls and antivirus, implementing strong passwords and access control, protecting the database, tracking all activity, etc.

In summation, compliance needs to be an “everyday, ongoing process” and organizations need “continuous adherence” to the standard.

Recommended!

Bank Trader Becomes a Traitor

Posted on September 22, 2011 by admin

Insider threats are very real and around us all, especially those working at financial institutions such as banks and insurance companies!

See the full story about the recent loss of $2B at UBS Swiss Bank, caused by one of the bank’s traders, at this link.

Also highly recommended, and very relevant to iSecurity, is the excellent analysis by our business partner, Imperva.

PCI Compliance Anyone?

Posted on September 21, 2011 by admin

Face-to-face meetings with customers often lead to “real-world” enhancement requests which we at Raz-Lee take seriously…

At recent meetings in the Midwest, we were asked to enhance our iSecurity Firewall product to allow network access to PCI business critical files from ONLY certain IPs addresses.

Our initial intent was to restrict access to these files based upon whether or not specific users are allowed to access such files. That is, if the user tries to access the file from a specific IP address or address-range, their identity will be checked using the definitions of an alternative user.

After discussing this solution with a select group of Firewall customers, we decided to implement a more streamlined, less error-prone solution using Firewall’s Object Security features, to define Location Groups for each file or set of generic files. A Location Group is defined as a set of IP addresses or address-ranges and/or generic device names, from which access to these sensitive files will be either allowed or rejected.

Defining access rights using Files rather than Users greatly simplifies the solution and will serve as the basis for future related improvements based upon PCI auditor’s ongoing requests, which, as always, we intend to implement!

For purposes of monitoring actual access to these sensitive files, which PCI auditors will obviously require/demand, we provide iSecurity Audit, which is based upon the QAUDJRN and uses ZC and ZR audit types. Using iSecurity’s unique Group/Item filter feature, the user can easily define the relevant items which must (or should not- NITEM) appear in the specified Group.

Why Insider Threats are so Dangerous and Prevalent

Posted on January 26, 2011 by admin

Disgruntled employees, recently fired or not given raises can do the biggest damage to the company. They know the organization from the inside and know exactly were the sensitive information is stored.

A case like that happened in Vodafone who has fired several staff in NSW for breaking into databases to steal customer information.

Visualizer in the News!

Posted on January 17, 2011 by admin

Following System i Network’s recent focuson Raz-Lee’s YouTube channel, iSecurity’s acceptance into IBM Italy’s Smart Business Program and MCPress Online’s article on Visualizer, IBM Systems Magazine’s January 2011 Product News features our Visualizer Business Intelligence product which assists companies worldwide to analyze and pinpoint security and management issues in a user-friendly, slice-and-dice GUI.

Revolutionary Business Intelligence Capabilities in Raz-Lee’s iSecurity Visualizer

Posted on September 8, 2010 by admin

Raz-Lee Security, a leading supplier of information security solutions for IBM Power i servers (iSeries/AS/400), has enhanced its iSecurity Visualizer with revolutionary Business Intelligence capabilities which will help companies analyze and pinpoint security and management issues based upon all security and management-related queries which can be executed from the iSecurity GUI.

For the past three years, Raz-Lee has offered its customers an advanced, Eclipse-based Business Intelligence solution called Visualizer for easily analyzing network access and QAUDJRN activity in a friendly graphic user interface environment. This solution enabled users to instantaneously find the “needle in the haystack” in order to investigate potential security breaches whether originating from the network or transpiring on the IBM i itself.

With the addition of the new capabilities, Visualizer now analyzes:

• Firewall log files

• Audit log files

• AP-Journal application data

• Output of Firewall queries

• Output of Audit queries including User Profile-related queries

• Output of queries which have been run and stored on disk (Database Reports)

Of special interest, the ability to analyze User Profile based queries via Visualizer adds an essential dimension to the challenge of defining, synchronizing and managing User Profile information, especially in multiple partition environments.

In addition, Visualizer now has “Drill To” capabilities for easily defining or changing security rules based upon specific network access or QAUDJRN events, as well as for dynamically displaying a table view of BI-filtered data, enabling export to Excel, PDF, CSV and HTML files.

Raz-Lee Security sees this functional expansion of Visualizer as a major step forward in helping customers obtain real benefit from iSecurity as well as in differentiating iSecurity from ALL competitors.

“Anyone reading the professional trade press over the past year or so has undoubtedly been impressed by the ever increasing number of articles centering on the potential benefits to companies attained by using Business Intelligence technologies,” said Eli Spitz, VP Business Development, Raz-Lee Security. “Our revolutionary Visualizer BI product responds to this trend and gives our customers the cutting edge technology they deserve.”