Micro-Mainframe Security

Abstract

The widespread use and availability of microcomputers and local area networks (LANs) has drastically changed the way in which users do computing and access mainframes. Communications technology and LANs have increased the capability to interconnect computers remotely and locally. Users are demanding access to mainframe data bases, whether it be through dial-up lines, gateways, or 3270/coaxial connections. Unfortunately, many organizations are still focusing solely on physically and logically protecting the mainframe and its applications, which may not be sufficient to ensure the security of information on these systems. Statistics concerning computer crime indicate that most computer crime is committed by insiders, which implies that these criminals already have some form of access to the mainframe. Because it is common for log-on, user identification, and other data for these mainframes to travel over communications lines in cleartext, anyone with access to a microcomputer connected to the mainframe can ...