DOCSLIB.ORG

MTS Volume 5

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
MTS Volume 5 M T S The Michigan Terminal System Volume 5: System Services May 1983 | Updated September 1985 (Update 1) The University of Michigan Computing Center Ann Arbor, Michigan ***************************************************** * * * This obsoletes the April 1980 edition. * * * ***************************************************** 1 DISCLAIMER The MTS Manual is intended to represent the current state of the Michigan Terminal System (MTS), but because the system is constantly being developed, extended, and refined, sections of this volume will become obsolete. The user should refer to the Computing_________ Center______ Newsletter,__________ Computing Center Memos, and future Updates to this volume for the latest information about changes to MTS. Copyright 1983 by the Regents of the University of Michigan. Copying is permitted for nonprofit, educational use provided that (1) each repro- duction is done without alteration and (2) the volume reference and date of publication are included. Permission to republish any portions of this manual should be obtained in writing from the Director of the University of Michigan Computing Center. 2 MTS 5: System Services May 1983 Page Revised September 1985 PREFACE_______ The software developed by the Computing Center staff for the operation of the high-speed processor computer can be described as a multiprogramming supervisor that handles a number of resident, reentrant programs. Among them is a large subsystem, called MTS (Michigan Terminal System), for command interpretation, execution control, file management, and accounting maintenance. Most users interact with the computer’s resources through MTS. The MTS Manual is a series of volumes that describe in detail the facilities provided by the Michigan Terminal System. Administrative policies of the Computing Center and the physical facilities provided are described in a separate publication entitled Introduction_____________________ to the Computing________________ Center. The MTS volumes now in print are listed below. The date indicates the most recent edition of each volume; however, since volumes are updated by means of CCMemos, users should check the Memo List, copy the files *CCMEMOS or *CCPUBLICATIONS, or watch for announcements in the Computing____________________________ Center Newsletter, to ensure that their MTS volumes are fully up to date. | Volume 1: The____________________________ Michigan Terminal System, January 1984 | Volume 2: Public________________________ File Descriptions, April 1982 | Volume 3: System______________________________ Subroutine Descriptions, April 1981 | Volume 4: Terminals_____________________________ and Networks in MTS, March 1984 | Volume 5: System_______________ Services, May 1983 | Volume 6: FORTRAN______________ in MTS, October 1983 | Volume 7: PL/I___________ in MTS, September 1982 | Volume 8: LISP____________________ and SLIP in MTS, June 1976 | Volume 9: SNOBOL4______________ in MTS, September 1975 | Volume 10: BASIC____________ in MTS, December 1980 | Volume 11: Plot_______________________ Description System, August 1978 | Volume 12: PIL/2____________ in MTS, December 1974 | Volume 13: The_____________________________ Symbolic Debugging System, September 1985 | Volume 14: 360/370_________________________ Assemblers in MTS, May 1983 | Volume 15: FORMAT__________________ and TEXT360, April 1977 | Volume 16: ALGOL______________ W in MTS, September 1980 | Volume 17: Integrated__________________________ Graphics System, December 1980 | Volume 18: The___________________ MTS File Editor, August 1985 | Volume 19: Tapes______________________ and Floppy Disks, February 1983 Other volumes are in preparation. The numerical order of the volumes does not necessarily reflect the chronological order of their appearance; however, in general, the higher the number, the more specialized the volume. Volume 1, for example, introduces the user to 3 MTS 5: System Services Page Revised September 1985 May 1983 MTS and describes in general the MTS operating system, while Volume 10 deals exclusively with BASIC. The attempt to make each volume complete in itself and reasonably independent of others in the series naturally results in a certain amount of repetition. Public file descriptions, for example, may appear in more than one volume. However, this arrangement permits the user to buy only those volumes that serve his or her immediate needs. Richard A. Salisbury General Editor 4 MTS 5: System Services May 1983 PREFACE_________________________ TO REVISED VOLUME 5_ The May 1983 revision reflects the changes that have been made to MTS since the April 1980 edition. The sections "IOH," "Extensions to the Amdahl 470 Operations," and "Extensions to the System/360 Model 67 Operations" have been moved into MTS Volume 14, 360/370_________________________ Assemblers in MTS. Acknowledgments for the descriptions and programs contained in this volume are as follows: The SORT program was developed by Douglas Burr Smith to test several concepts relating to sorting algorithms and page faults in a large virtual memory environment. Additional development of both the program and the description in this volume has been done by Charles F. Engle. The dynamic loader program and its description were originally produced by Ronald J. Srodawa. Recent additions to the program and description were made by Kenneth DeJong and Pat Sherry. The linkage editor program and its description were produced by Kenneth DeJong, James Henriksen, and Pat Sherry. The object-file editor program and its description were produced by Pat Sherry. The ACCOUNTING command mode was originally developed as the program *PROJECTACCOUNT by Charles F. Engle. His continuing development of the program has led to the present version of ACCOUNTING which is described in this volume. The remainder of the descriptions in this volume were either produced by or heavily modified from other documentation by the editorial staff. 5 MTS 5: System Services May 1983 6 MTS 5: System Services May 1983 Contents________ Preface . 3 The SORT Subroutine . 57 Introduction . 57 Preface to Revised Volume 5 . 5 Return Codes . 57 The Entry Point SORT . 57 The SORT Utility Program . 11 The Entry Point SORT2 . 62 Simple Character Sorts . 13 The Entry Point SORT3 . 65 Elementary Sorting of The Entry Point SORT4 . 67 FORTRAN Output . 15 Bibliography . 71 Notation . 16 Appendix A: Collating Fields 72 The Control Statement . 17 Appendix B: Record The Mode’s Description . 18 Structures . 77 The Collating Sequence’s Appendix C: Summary of the Description . 18 Control Statement . 81 The Defined Sequences’ Descriptions . 20 The Dynamic Loader . 83 The Data Sets’ Elementary Loader Topics . 83 Descriptions . 21 Introduction . 83 The END Parameter . 25 Overview of the Loading Additional Parameters . 25 Process . 83 Restricted Parameters . 29 Structure of Optional Exits . 29 Compiler-Generated Object Exit SORTE0 . 30 Modules . 85 Exit SORTE1 . 31 Processing an Object Exit SORTE2 . 33 Module . 87 Exit SORTE3 . 35 Storage Allocation During Exit SORTE4 . 36 the Loading Process . 88 Exit SORTE5 . 37 Advanced Loader Topics . 88 Exit SORTE6 . 39 Modifying Programs in Exit SORTE7 . 40 Object-Module Form . 88 Exit SORTE8 . 40 Common-Section Processing . 93 Exit SORTE9 . 41 Pseudo-Register Processing 93 Optional Entrance . 41 Merging External Symbols . 94 Entrance SORTEA . 41 Library Processing . 95 Sort Timing Estimates . 42 Dynamic Loading . 98 Sort Optimization . 48 Initial ESD Lists and Number and Types of Low-Core Symbol Tables . .100 Collating Fields . 48 Appendix A: Entry Point Distribution of the Determination . .104 Source Data . 48 Appendix B: Loader Error Blocking Factors of Data Messages . .105 Sets . 49 Appendix C: Sample Loader Number, Type, and Map . .110 Efficiency of Exits . 49 Appendix D: Loader Record System Load . 49 Format . .113 Processing Magnetic Tapes . 50 Translator-Generated Load Statistics and Diagnostics . 51 Records . .113 Sort Examples . 52 7 MTS 5: System Services May 1983 User-Generated Load LENGTH . .184 Records . .137 MISCSAVE . .184 Library Control Records . .143 MSGSAVE . .185 NAME . .185 Virtual Memory Management . .147 NV . .185 OM . .185 The Linkage Editor . .159 ORL . .186 Linkage Editor Command SLI . .186 Language . .162 SORT . .186 General Syntax . .162 SYMSAVE . .187 Linkage Editor Commands . .164 TERSE . .187 ADD . .165 TYPE . .187 ALIAS . .165 V . .188 ATTRIBUTE . .165 VERBOSE . .188 BLAST . .166 WXTOER . .188 CLEAR . .166 Linkage Editor Example . .189 COMBINE . .167 Principles of Operation . .192 COMMENT . .167 Optimization of Object COPY . .168 Modules . .193 CSECT . .168 Optimizations DELETE . .168 Automatically Performed . .193 DISPLAY . .169 Optimizations Performed DUMP . .170 by the COMBINE Command . .195 INCLUDE . .170 Optimizations Performed LIST . .170 by the PURGE Command . .196 MAP . .172 Optimizations Obtained by MCMD . .172 the SLI Modifier . .197 MODIFY . .172 Optimizations Obtained by MTS . .174 the BC Modifier . .197 PUNCH . .174 Processing Special Records .197 PURGE . .174 Attention-Interrupt RENAME . .175 Processing . .199 REPLACE . .175 Input Conversion . .200 RETURN . .176 Output Conversion . .204 SCAN . .176 Object-Module Naming SET . .177 Conventions . .205 STOP . .178 UNLINK . .178 The Object-File Editor . .207 UPDATE . .179 Object-File Editor Command XREF . .179 Language . .212 Command Modifiers . .180 Object-File Editor A . .180 Commands . .215 BC . .181 ADD . .215 CHECK . .181 CLEAR . .215 COMSAVE . .181 CLOSE . .215 CSECT . .182 COMMENT . .216 CSECT=
Load more

Recommended publications
  • CA Top Secret for Z/OS Control Options Guide
    CA Top Secret® for z/OS Control Options Guide r15 Ninth Edition This Documentation, which includes embedded help systems and electronically distributed materials (hereinafter referred to as the “Documentation”), is for your informational purposes only and is subject to change or withdrawal by CA at any time. This Documentation is proprietary information of CA and may not be copied, transferred, reproduced, disclosed, modified or duplicated, in whole or in part, without the prior written consent of CA. If you are a licensed user of the software product(s) addressed in the Documentation, you may print or otherwise make available a reasonable number of copies of the Documentation for internal use by you and your employees in connection with that software, provided that all CA copyright notices and legends are affixed to each reproduced copy. The right to print or otherwise make available copies of the Documentation is limited to the period during which the applicable license for such software remains in full force and effect. Should the license terminate for any reason, it is your responsibility to certify in writing to CA that all copies and partial copies of the Documentation have been returned to CA or destroyed. TO THE EXTENT PERMITTED BY APPLICABLE LAW, CA PROVIDES THIS DOCUMENTATION “AS IS” WITHOUT WARRANTY OF ANY KIND, INCLUDING WITHOUT LIMITATION, ANY IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NONINFRINGEMENT. IN NO EVENT WILL CA BE LIABLE TO YOU OR ANY THIRD PARTY FOR ANY LOSS OR DAMAGE, DIRECT OR INDIRECT, FROM THE USE OF THIS DOCUMENTATION, INCLUDING WITHOUT LIMITATION, LOST PROFITS, LOST INVESTMENT, BUSINESS INTERRUPTION, GOODWILL, OR LOST DATA, EVEN IF CA IS EXPRESSLY ADVISED IN ADVANCE OF THE POSSIBILITY OF SUCH LOSS OR DAMAGE.
    [Show full text]
  • OS Structures and System Calls
    COS 318: Operating Systems OS Structures and System Calls Kai Li Computer Science Department Princeton University (http://www.cs.princeton.edu/courses/cos318/) Outline Protection mechanisms OS structures System and library calls 2 Protection Issues CPU Kernel has the ability to take CPU away from users to prevent a user from using the CPU forever Users should not have such an ability Memory Prevent a user from accessing others’ data Prevent users from modifying kernel code and data structures I/O Prevent users from performing “illegal” I/Os Question What’s the difference between protection and security? 3 Architecture Support: Privileged Mode An interrupt or exception (INT) User mode Kernel (privileged) mode • Regular instructions • Regular instructions • Access user memory • Privileged instructions • Access user memory • Access kernel memory A special instruction (IRET) 4 Privileged Instruction Examples Memory address mapping Flush or invalidate data cache Invalidate TLB entries Load and read system registers Change processor modes from kernel to user Change the voltage and frequency of processor Halt a processor Reset a processor Perform I/O operations 5 x86 Protection Rings Privileged instructions Can be executed only When current privileged Level (CPR) is 0 Operating system kernel Level 0 Operating system services Level 1 Level 2 Applications Level 3 6 Layered Structure Hiding information at each layer Layered dependency Examples Level N THE (6 layers) . MS-DOS (4 layers) . Pros Level 2 Layered abstraction
    [Show full text]
  • CA Top Secret R16 Security Target
    CA Top Secret r16 Security Target ST Version: 1.0 August 18, 2017 3333 Warrenville Road Suite 800 Lisle, IL 60532 Prepared By: Cyber Assurance Testing Laboratory 304 Sentinel Drive, Suite 100 Annapolis Junction, MD 20701 Security Target CA Top Secret r16 Table of Contents 1 Security Target Introduction ................................................................................................................. 6 1.1 ST Reference ................................................................................................................................. 6 1.1.1 ST Identification ................................................................................................................... 6 1.1.2 Document Organization ........................................................................................................ 6 1.1.3 Terminology .......................................................................................................................... 7 1.1.4 Acronyms .............................................................................................................................. 8 1.1.5 References ............................................................................................................................. 9 1.2 TOE Reference .............................................................................................................................. 9 1.3 TOE Overview .............................................................................................................................
    [Show full text]
  • CICS Essentials Auditing CICS – a Beginner’S Guide
    CICS Essentials Auditing CICS – A Beginner’s Guide Julie-Ann Williams Mike Cairns Martin Underwood Craig Warren ii CICS ESSENTIALS Foreword by Brian Cummings A thorough Audit Guide for CICS is something that is long overdue. This document provides a wealth of information about CICS, its operations, and its various resources and capabilities along with audit guidelines and recommendations. Various documents on AuditNet and other sources have taken a stab at parts or all of CICS, but are likely not up to date or sufficiently complete. CICS largely remains an environment that holds its mysteries against auditors and security officers alike. The results of poor understanding can lead to dangerous levels of unidentified risk to the applications and sensitive information of entities that use the power of CICS for critical business applications. Unlike any other environment, CICS security implementations fail in the first place because all of the security control is often only focused on transactions. Transactions are many levels of resources removed from the data files and data bases they query or update. In the end, we see the greatest level of security established for the least sophisticated technical users – end business users, and the least security facing the most technically sophisticated – the CICS sub-system programmer and the CICS Application programmer. For example, it is typical to leave FCT resources unsecured and to allow the CICS regions to have total rights to the data sets they access. This condition gives sub-system and application programmers full-reign to use CICS utilities to inherit the CICS regions’ authorities and gain full access to freely browse and update data.
    [Show full text]
  • 402197 350 System Manual.Book
    350 Cable Survey System System Manual Covers DeepView Software Version 5.x.x and Firmware Version 3.7 TSS (International) Ltd 1, Garnett Close Greycaine Industrial Estate Watford, Herts, WD24 7GL Telephone +44 (0)1923 470800 Facsimile +44 (0)1923 470842 24 hr Customer Support +44 (0)7899 665603 e-mail: [email protected] The information in this Manual is subject to change without notice and does not represent a commitment on the part of TSS (International) Ltd Document P/N 402197 Issue 2.4 abcdef January 2008 1 9 9 3 THE QUEEN'S AWARD FOR EXPORT ACHIEVEMENT Contents CAUTIONARY NOTICE This System Manual contains full installation and operating instructions and is an important part of the 350 System. This Manual should remain easily available for use by those who will install, operate and maintain the System. WARNINGS and CAUTIONS Where appropriate, this Manual includes important safety information. Safety infor- mation appears as WARNING and CAUTION instructions. You must obey these instructions: ❐ WARNING instructions alert you to a potential risk of death or injury to users of the 350 System. ❐ CAUTION instructions alert you to the potential risk of damage to the 350 System. For your convenience, the Table of Contents section includes copies of all the WARNING and CAUTION instructions contained in this Manual. Technical Support and contact information TSS (International) Ltd 1 Garnett Close, Greycaine Industrial Estate, Watford, Herts, WD24 7GL Tel: +44 (0)1923 470800 Fax: +44 (0)1923 470842 Out of UK Hours Technical Helpline: +44 (0)7899
    [Show full text]
  • Technical Services Attachment for Technology Support Services (TSS)
    Technical Services Attachment IBM Deutschland GmbH for T echnology S upport Services (TSS) Offerings Using this Attachment, Client may order TSS offerings from IBM. Additional details are provided in Transaction Documents (TDs). The agreement in place between the parties (CRA or equivalent) referenced in the signature block, this Attachment, and TDs are the complete agreement regarding TSS transactions hereunder. 1. Services IBM will provide Services, as described in this Technical Services Attachment for TSS Offerings (Attachment) and Statements of Work (SOW), Transaction Documents, and Change Authorizations (collectively Transaction Documents or TDs), to support Client’s Eligible Machines and Eligible Programs (collectively Eligible Products). This Attachment replaces all other previously accepted versions of this Attachment for the Client named in the signature block, as to new transactions dated after the effective date of this Attachment. IBM will identify Eligible Products, Specified Locations (entire information processing environment, or a portion thereof, at multiple sites or a single building), hours of coverage selected, applicable Services, and the contract period, in TDs. Additional details may be documented in the TD, as applicable to the specific transaction. Client may place service requests 24x7, by voice or electronically, however IBM will begin servicing the request during the applicable entitled coverage days and hours. Coverage is based on the time zone where the Eligible Machine is located. IBM provides Services during the hours of service selected in the Transaction Document. Eligible Machines must meet IBM’s safety and serviceability requirements. Any IBM inspection for maintenance eligibility is subject to a charge. IBM reserves the right to inspect a Machine within one month from the start of Service.
    [Show full text]
  • Norco College Technology Committee Meeting 12:50Pm-1:50 P.M
    Norco College Technology Committee Meeting 12:50pm-1:50 p.m. CSS 219 December 13, 2017 MINUTES Present Absent Ruth Leal (Co-Chair) Cathy Brotherton (CIS/BEIT) Damon Nance (Library) Kim K. Kamerin (AHWL) Daniel Lambros (IMC) Deven Fafard (ASNC) Sergio Quiroz (ASNC) Daren Koch (Tutorial) Lenny Riley (DOI) Guest James Finley (CIS/GAM) Ricardo Aguilera (TSS) Janet Frewing (Math) Mike Angeles (TSS) Mitzi Sloniger (COMM) Frank Martinez (TSS) Vanessa Acosta (A&R) 1. Call to Order 12:50 p.m. 2. Consent Calendar- Ruth Leal a. October 19, 2017 Minutes were reviewed. b. November 9, 2017 Minutes were reviewed. Motion (Finley/Frewing). Two abstentions. Approved. 3. Technology Plan – Ruth a. Subcommittees Report - Ms. Leal provided an update regarding the subcommittees. i. Goal #6 – Phase II computers were not all installed in the summer as reported and an email has been sent to all of the users to see if their computer was replaced or still needs to be replaced. Responses are slow but the committee will continue to follow-up. TSS will use the computers in inventory which were purchased for this in last year’s resource allocation process. TSS reported that there were 53 computers in the warehouse after installation of the podium computer project. The Phase II list was shared with Business Services and TSS in the September 2017. The committee will be updated on this in the spring. The Technology Principles and Guidelines were updated to reflect the prioritization process and new template approved by the Technology Committee. The committee reviewed the document. Motion (Acosta/Sloniger).
    [Show full text]
  • A Technical History of National CSS
    A Technical History of National CSS By Harold Feinleib Written: March 4, 2005 CHM Reference number: R0363.2016 A Technical History of National CSS By Harold Feinleib I knew I wanted to go into computers when I got my first program to work. That was quite a thrill. It happened in 1964 during my senior year at Cornell when I took the only course given in computers. I had to look to the Electrical Engineering school where we worked on a Burroughs 220, a computer filled with thousands of vacuum tubes that took up a good sized room. It was actually a very nice computer because it worked in decimal instead of binary. That memorable program was of course a Sort program—I had to sort a list of numbers. I wonder how many sort programs have been written before or since. It must be millions. With great enthusiasm, I interviewed at the campus-recruiting program where companies sent people to find new employees for their organization. In the 1960’s, unlike today, the job market was very active and no one had a problem getting started right after they graduated from college. I got some interest from three companies: Equitable Life to work in their actuarial program in New York City; IBM as a programmer to work in upstate NY; and with the Service Bureau Corporation to also work in midtown Manhattan. New York City was very appealing to me; I was 20 years old, and living in Manhattan was a very exciting prospect, so I took great interest in the Equitable and the SBC interviews.
    [Show full text]
  • MTS on Wikipedia Snapshot Taken 9 January 2011
    MTS on Wikipedia Snapshot taken 9 January 2011 PDF generated using the open source mwlib toolkit. See http://code.pediapress.com/ for more information. PDF generated at: Sun, 09 Jan 2011 13:08:01 UTC Contents Articles Michigan Terminal System 1 MTS system architecture 17 IBM System/360 Model 67 40 MAD programming language 46 UBC PLUS 55 Micro DBMS 57 Bruce Arden 58 Bernard Galler 59 TSS/360 60 References Article Sources and Contributors 64 Image Sources, Licenses and Contributors 65 Article Licenses License 66 Michigan Terminal System 1 Michigan Terminal System The MTS welcome screen as seen through a 3270 terminal emulator. Company / developer University of Michigan and 7 other universities in the U.S., Canada, and the UK Programmed in various languages, mostly 360/370 Assembler Working state Historic Initial release 1967 Latest stable release 6.0 / 1988 (final) Available language(s) English Available programming Assembler, FORTRAN, PL/I, PLUS, ALGOL W, Pascal, C, LISP, SNOBOL4, COBOL, PL360, languages(s) MAD/I, GOM (Good Old Mad), APL, and many more Supported platforms IBM S/360-67, IBM S/370 and successors History of IBM mainframe operating systems On early mainframe computers: • GM OS & GM-NAA I/O 1955 • BESYS 1957 • UMES 1958 • SOS 1959 • IBSYS 1960 • CTSS 1961 On S/360 and successors: • BOS/360 1965 • TOS/360 1965 • TSS/360 1967 • MTS 1967 • ORVYL 1967 • MUSIC 1972 • MUSIC/SP 1985 • DOS/360 and successors 1966 • DOS/VS 1972 • DOS/VSE 1980s • VSE/SP late 1980s • VSE/ESA 1991 • z/VSE 2005 Michigan Terminal System 2 • OS/360 and successors
    [Show full text]
  • Advanced Authentication Connector for Z/OS® Installation and Getting Started Guide © Copyright 2017 - 2020 Micro Focus Or One of Its Affiliates
    Micro Focus® Advanced Authentication Connector for z/OS® Installation and Getting Started Guide © Copyright 2017 - 2020 Micro Focus or one of its affiliates. The only warranties for products and services of Micro Focus and its affiliates and licensors (“Micro Focus”) are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Micro Focus shall not be liable for technical or editorial errors or omissions contained herein. The information contained herein is subject to change without notice. Contains Confidential Information. Except as specifically indicated otherwise, a valid license is required for possession, use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items are licensed to the U.S. Government under vendor's standard commercial license. Release: 1.1 Publication date: Updated May 2020 Table of Contents Welcome to Micro Focus® Advanced Authentication Connector for z/OS® . 5 Typographical Conventions . 6 Chapter 1 Overview . 7 Chapter 2 Implementing the Micro Focus Advanced Authentication Connector for z/OS . 9 Prerequisites . 10 Uploading the AACZ Product Distribution Files to the Host . 10 Creating the AACZ Started Task . 10 Additional Notes About Creating the AACZ Started Task. 12 Sample Start-Up Parameters. 12 Notes on the Use of Signed Certificates . 14 Using a Certificate that Has Been Signed by a Certificate Authority . 15 Using a Self-Signed Certificate . 15 RACF, ACF2, and Top Secret Requirements and Commands . 15 Defining an MFA Profile . 15 Defining Users to the NetIQ AA Server.
    [Show full text]
  • Arxiv:1904.12226V1 [Cs.NI] 27 Apr 2019
    The Ideal Versus the Real: Revisiting the History of Virtual Machines and Containers Allison Randal, University of Cambridge Abstract also have greater access to the host’s privileged software (kernel, operating system) than a physically distinct ma- The common perception in both academic literature and chine would have. the industry today is that virtual machines offer better se- curity, while containers offer better performance. How- Ideally, multitenant environments would offer strong ever, a detailed review of the history of these technolo- isolation of the guest from the host, and between guests gies and the current threats they face reveals a different on the same host, but reality falls short of the ideal. The story. This survey covers key developments in the evo- approaches that various implementations have taken to lution of virtual machines and containers from the 1950s isolating guests have different strengths and weaknesses. to today, with an emphasis on countering modern misper- For example, containers share a kernel with the host, ceptions with accurate historical details and providing a while virtual machines may run as a process in the host solid foundation for ongoing research into the future of operating system or a module in the host kernel, so they secure isolation for multitenant infrastructures, such as expose different attack surfaces through different code cloud and container deployments. paths in the host operating system. Fundamentally, how- ever, all existing implementations of virtual machines and containers
    [Show full text]
  • The Mainframe Audit News
    MANEWS Issue Number 21 the Mainframe Audit News This newsletter tells you stuff you need to know to audit IBM mainframe computers runinng with z/OS and the MVS operating system. This issue we show you how to plan the data gathering for your audit. Table of Contents 1. Planning Data Gathering for a Mainframe Security Audit 2. What Data to Gather for a RACF Audit 3 What Data to Gather for a CA-ACF2 Audit 4. What Data to Gather for a CA-TopSecret Audit 5. What Data to Gather for an MVS Security Audit 6. Other Considerations 7. Seminar Information and Miscellanea 1) Planning Data Gathering for a Mainframe Security Audit Getting the data you need at the beginning of an audit may be one of the most important things you can do to make the audit successful. Knowing what to ask for before the audit starts is key to getting it before you need it. You’ll learn below how to plan what data to ask for. In future issues we will show you how to interpret some of it, and how to make use of it in your audit program. This issue addresses only planning for your data gathering. To decide what to ask for, consider that mainframe (z/OS and MVS) security consists of two major parts: the security software and the MVS operating system security. You will likely want to limit your scope to one or the other. The security software is always one of these Big Three: · RACF (IBM’s Resource Access Control Facility) · CA-ACF2 (CA Technology’s ACF2) or · CA-TopSecret (CA Technology’s TopSecret, often called just TSS) Page 1 www.stuhenderson.com September, 2013 MANEWS Issue Number 21 the Mainframe Audit News The security software handles identification and validation of users (often by means of a userid and password).
    [Show full text]