Gartner Research

IBM SecureWay Security Server: RACF

Published: 11 January 2001

ID: G0089821

Analyst(s): Ant Allan


RACF is the key component of SecureWay Security Server, IBM's package of security services for the OS/390 and z/OS operating systems. Core functions include user authentication, authorization to data sets and a wide variety of resources, and auditing capabilities. IBM has developed RACF continuously since its introduction on MVS in 1976--with increasing emphasis on extending RACF security services to client/server, distributed computing, and e-commerce environments. RACF now offers support for authentication using digital certificates, for Kerberos V5 authentication via the Security Server Network Authentication and Privacy Service, and for directory services through the Security Server LDAP Server. But RACF faces stiff competition from other e-commerce security solutions. Has IBM's emphasis on supporting e-commerce undermined RACF's key strengths?

Table Of Contents
  • Corporate Headquarters
  • Overview
    • SecureWay Security Server: Resource Access Control Facility (RACF)
  • Analysis
    • Core Security Capabilities
    • E-Commerce Support
    • Customer Support
    • Professional Services
  • Pricing
    • GSA Pricing
  • Competitors
    • Computer Associates International, Inc., CA-ACF2 and CA-Top Secret
  • Strengths
    • Full Integration With IBM Operating Systems and SecureWay Products
    • Increased Support for E-Commerce Environments
  • Limitations
    • Weak Management and Reporting Tools
    • Lack of Fine Granularity for Local Administration
    • Lack of Fine Granularity of Authorization
  • Insight

©2021 Gartner, Inc. and/or its affiliates. All rights reserved. Gartner is a registered trademark of Gartner, Inc. and its affiliates. This publication may not be reproduced or distributed in any form without Gartner’s prior written permission. It consists of the opinions of Gartner’s research organization, which should not be construed as statements of fact. While the information contained in this publication has been obtained from sources believed to be reliable, Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartner research may address legal and financial issues, Gartner does not provide legal or investment advice and its research should not be construed or used as such. Your access and use of this publication are governed by Gartner’s Usage Policy. Gartner prides itself on its reputation for independence and objectivity. Its research is produced independently by its research organization without input or influence from any third party. For further information, see Guiding Principles on Independence and Objectivity.

Already have a Gartner Account?

Purchase this Document

To purchase this document, you will need to register or sign in above

Become a client

Learn how to access this content as a Gartner client.