IBM MAINFRAME HELP FORUMS for COBOL, JCL, CICS, DB2, IMS etc...
Help & Support Forums for IBM Mainframe computers Applications like COBOL, JCL, CICS, DB2, FileAid, DFSORT, Endevor, Xpediter, CoolGen, CA-7, CA-11, AbendAid, IMS, IDMS, PL/I, MqSeries, SyncSort, Assembler, VSAM, ISPF, ChangeMan, Easytrieve, InterTest, REXX, CLIST etc...
 

How to perform security testing on mainframe application?

THIS IS AN ARCHIVE FORUM: CLICK HERE TO GO TO THE ORIGINAL TOPIC

 
       IBMMAINFRAMES.com - IBM Mainframe Support Forums Index -> Mainframe Application Testing
View previous topic :: View next topic  
Author Message
Saint Cruz



Joined: 20 Aug 2007
Posts: 2
Location: China
Posted: Wed Aug 22, 2007 10:22 am    Post subject: How to perform security testing on mainframe application?  
Can anyone share some ideas or experience on the security testing?
Back to top  
Devzee



Joined: 20 Jan 2007
Posts: 714
Location: Hollywood
Posted: Wed Aug 22, 2007 10:29 am    Post subject:  
Quote: security testing?
Please define what according to your requirement is security testing.

Are you referring to Online environment transaction security testing?
Security access to Tables/ Database?
Back to top  
Saint Cruz



Joined: 20 Aug 2007
Posts: 2
Location: China
Posted: Wed Aug 22, 2007 1:32 pm    Post subject:  
Devzee wrote: Quote: security testing?
Please define what according to your requirement is security testing.

Are you referring to Online environment transaction security testing?
Security access to Tables/ Database?


Yes,Devzee,what you have mentioned is part of my task.Actually what I'm trying to test is an application test environment consists of OPC,CICS,DB2 and some program libraries under the management of SCLM as well.Now we are working on the ST/SIT phase,and the environment should be tested at first.What I'm thinking about is to verify the authoritis to make sure the people who will perform ST/SIT could have the proper access.Can you share your experience or is there a comman way that I can follow?
Back to top  
Devzee



Joined: 20 Jan 2007
Posts: 714
Location: Hollywood
Posted: Wed Aug 22, 2007 8:00 pm    Post subject:  
If security access rules are setup correctly then there shouldnt be any issues. Setting up access rules should follow your setup guidelines, I assume you are not writing access rules from scratch.

I dont think you can simulate the security testing without logging on using user logons and verifying the security.

When users are testing if they dont have access will call you?
Back to top  
 
       IBMMAINFRAMES.com - IBM Mainframe Support Forums Index -> Mainframe Application Testing
Page 1 of 1
THIS IS AN ARCIVE FORUM IN READ ONLY MODE. IF YOU WANT TO ASK YOUR DOUBTS USE THE ACTUAL FORUM
Related Links