Select Page

SF-LoginHood
Your z/OS password quality guarantor and login protector

Downloads

SF-LoginHood Product Description as pdf  →

Harden your “z entrance area” guaranteeing most safe passwords and ultimate protection of the authentication (“login”) services – both in real-time!

z/OS penetration tests and audits clearly prove: Weaknesses in password and login security lead to a particularly high vulnerability – and quick success for the attacker. Why? First, although RACF does sport some login-related protection features and offers supplemental products, it still does not provide sufficiently sensitive (“filigree”) and automated security controls actually required in the fields of login and password security. Second, these are usual omissions made by the mainframe user himself because of a lack of real-time quality assurance, monitoring and audit in the areas of user IDs, passwords, phrases, and certificates.

As a powerful, cost-effective and hardware-free solution, SF-LoginHood paves the new integral path to the state-of-the-art protection of the z/OS platform in the area of the password and login security. Our company’s independence allowed a uniquely relentless and effective identification of all risks associated with the z platform in order to

N

Guarantee maximum password and phrase quality

N

Provide maximum protection against theft of any authentication-related data

N

Employ additional hardening of the authentication mechanisms that prevent their abuse 

N
Ensure transparency and completeness in effectively logging 100% of all relevant activities, and to
N

Establish real-time anomaly detection on the system, administration and user levels



This spectrum of necessary precautionary measures in the “z entrance area” clearly proves both. Simply setting up a list of forbidden passwords is just not enough anymore. Do not forget that RACF still requires you to program an exit in Assembler to realize that measure. Merely implementing audit solutions to reveal problems “ex-post” is also too little too late.

Euro-SOX, Basel II, PCI, ISO, BSI, DOD, and other standards make additional pro-active measures in the login environment almost a 100% duty – not only for financial service providers – and are a prerequisite for receiving the certificate of compliance. SF-LoginHood was developed specifically for this purpose in a needs-based approach based on 15 years of practical experience. You can say it is an optimally aligned and overhead-free bundle of effective measures that tackles all of the above-mentioned problems at the root by completing the z/OS security based on RACF. SF-LoginHood is therefore the ideal solution for all mainframe users across all business sectors and company sizes. It is also the “perfect match” for all pragmatic z/OS users who dismiss any “monitoring or compliance overkill” and just desire a strong and state-of-the-art protection for their sensitive “z/OS entrance area”.

Do you already use or plan to use any Smart Card, Token or Identity Management solution? That’s a good idea! SF-LoginHood does not become superfluous. On the contrary, only SF- LoginHood completes these measures, and could even be a low-cost alternative to them.

Finally, the z/os mainframe becomes an impregnable fortress!

 

Enterprise IT Security - SIEM connectors

SIEM Connectors

Learn More
Enterprise IT Security - automate your security and compliance to the max

Mainframe Security and Compliance

Learn More
Enterprise IT Security - automate your security and compliance to the max

SOC (Security Operation Center)

Learn More

Compliance

Over the past several years, compliance has become more and more an important issue, but also a tedious task. Our SF solutions assist you in automating the resulting workload to the max by also covering the entire mainframe platform - thanks to a 360-degree approach.

PCI Data Security Standard (PCI DSS)

Learn More

General Data Protection Regulation (GDPR)

Learn More

Cloud Security

Learn More

Protection

With SF-Sherlock, you can also protect your mainframe platform against attacks and combat high-level risks. Thanks to our max approach this also includes malicious code and exploits. Yes, both of these are real risks on the mainframe platform!

Enterprise IT Security - automate your security and compliance to the max

Penetration Testing

Learn More
Enterprise IT Security - automate your security and compliance to the max

Privileged User Monitoring

Learn More
Enterprise IT Security - automate your security and compliance to the max

DB2 Real-Time Monitoring

Learn More

IMS Security Monitoring

Learn More

SF Solutions

All SF solutions are invented and developed in-house. Therefore, you can count on both our unique expertise and our high level of motivation in providing you with solutions and services with maximum performance, effectiveness, and productivity.

Security and compliance monitoring

SF-Sherlock

Real-time audit & compliance data provider, and audit trail protector

SF-NoEvasion

z/OS dump and log anonymization

SF-SafeDump

RACF database cleanup for z/OS

SF-SecuClean

Maximum password and login security for z/OS

SF-LoginHood

Unique utilities as individual solutions

SF-Utilities

Are you expecting a governmental audit of your mainframe platform soon, as
by the BaFin, ECB, or one of
the “Big Four”?

Let us help you prepare your mainframe security and compliance.

+800 - 37 333 853 or simply dial: +800 - DRFEDTKE

Call our world-wide toll-free number now!

(+ represents the prefix for international calls; in most countries it is 00, and you have to dial 00800-37333853; in the U.S. it corresponds to 011)

News & IT Security Forum

“Forensic Swiss Knife for z/OS” – become DORA- and FINMA-ready

by | Apr 28, 2025 |

DORA and FINMA sustainably increase the demands on IT security and resilience. One aspect of the proactive regulations concerns the more negative situations and aspects of an incident and how to deal with them, known as incident management. Such an incident necessitates a short-term, in-depth forensic analysis. The results of this analysis must be profound. Why? Since the decision on the restore point may be based on them. And don’t forget the stress level in such a situation. In the case of the mainframe, the logs and events kept online in the SIEM are often not 100% and potentially insufficient for the required deep-level analysis. Why? Because the total volume of data would often be too large for a truly complete SIEM delivery. What consequences does this have for DORA-related incident management? Your IT must always be able to provide the forensics team with the complete inventory of forensic data at short notice for selective periods of time, in an environment that is familiar to them and therefore performs well in terms of analysis. This is usually the SIEM, such as Splunk, ArcSight or QRadar, and not the TSO ISPF environment.

To support your mainframe environment with regard to this DORA aspect, SF-Sherlock’s PTF Level 095 also includes a “Forensic Swiss Knife for z/OS.” This allows you to prepare for this situation in accordance with DORA and FINMA. It works ON REQUEST to provide the SIEM with 100% of the necessary forensic data for a selected date and time range. It’s desgined to work even if top specialists are unavailable. The only step you need to take is to create the corresponding documentation in the operating manual. Such incident-related SIEM 100% filling should also always be part of the emergency drills required by DORA and FINMA.

Further DORA and NIS-2 focused PTF level 095 for SF-Sherlock

by | Jan 15, 2025 |

SF-Sherlock’s new integration with z/OS System Automation further strengthens the DORA objective of maximum resilience. The new SF-Sherlock 2 System Automation integration kit makes linking event monitoring to the Z System Automation solution a simple process. This also makes the automation team an integral part of the line of defense around the mainframe. Please contact our support if you have not yet received the download link.

Read All News

Join our newsletter list

Worldwide toll-free phone number

+800 - 37 333 853
or simply dial:
+800 - DRFEDTKE
Alternatively:
+41 (0)41 710 7444

(+ represents the prefix for international calls; in most countries it is 00, and you have to dial 00800-37333853; in the U.S. it corresponds to 011, and you have to dial 011-800-37333853)

Find Us

Headquarters

Seestrasse 3a, 6300 Zug, Switzerland

Visitors & Training

Dammstrasse 19, 6301 Zug, Switzerland

Social Media

Xing → Linkedin →

Write Us

Marketing
marketing@enterprise-it-security.com
copy the address

Technical support and hotline
hotline@enterprise-it-security.com
copy the address

Legal and compliance
legal@enterprise-it-security.com
copy the address