ACF2
From Wikipedia, the free encyclopedia
[1]ACF2 (Access Control Facility) is a commercial discretionary access control software security system developed for MVS (z/OS), VS1 and VM (z/VM) by SKK, Inc. Barry Schrager, Eberhard Klemens, and Scott Krueger combined to develop ACF2 at London Life Insurance in London, Ontario in 1978. The "2" was added to the ACF2 name by Cambridge Systems (who had the North American marketing rights for the product) to differentiate it from the prototype, which was developed by Schrager and Klemens at the University of Illinois -- the prototype name was ACF.
ACF2 was developed in response to IBM's RACF (developed in 1976), which was IBM's answer to the 1974 SHARE Security and Data Management project's requirement whitepaper. ACF2's design was guided by these requirements, taking a resource rule oriented approach. Unique to ACF2 was the concepts of "Protection by Default" and resource pattern masking.
As a result of the competitive tension between RACF and ACF2, IBM matured the SAF (Security Access Facility) interface in MVS (z/OS) which allowed any security product to process OS, 3rd party software and application security calls, enabling the mainframe to secure all facets of mainframe operations.
SKK and ACF2 were sold to UCCEL in 1986, which in turn was purchased by Computer Associates in 1987[1]. CA, Inc. now markets ACF2 as CA ACF2[2]. In 2004, Barry Schrager was asked to create a new security product, Deadbolt, for JME Software which was announced in February 2007. Barry has since left JME and is now Chief Security Architect for Vanguard Integrity Professionals[3] (www.go2vanguard.com) which is a supplier of software, training and services, mainly in the RACF segment of the marketplace.
This article does not cite any references or sources. (April 2007) Please help improve this article by adding citations to reliable sources. Unverifiable material may be challenged and removed. |