On 2/23/2006 5:07 PM, [EMAIL PROTECTED] wrote:
We are in the process of upgrading from 1.4 to 1.6 and I just put my
performance management folks on the alert for this in case the data
security folks would come asking.
Whether name-hiding would pose any problems depends on many factors,
including (but probably not limited to):
(a) how often your users browse VTOCs or catalogs via ISPF 3.4 or LISTCAT;
(b) how many different HLQs are in a VTOC.
(c) how good your data set naming conventions are (appropriate
separation of data into -different- HLQs, or use of RACF Naming
Convention Table);
(d) how many generics you define per HLQ (fewer is better);
(e) how you have your RACF database configured (number of splits, use of
coupling facility);
(f) how/whether you are sharing your RACF DB with other systems, what
global serialization method you are using (GRS with RESERVE conversion
best, unless you are using RACF sysplex data sharing);
(g) other typical I/O-subsystem configuration questions that affect
performance.
Walt Farrell, CISSP
z/OS Security Design, IBM
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
