. Kisco Home : products : SafeNet/400 : Recent Press Releases : SafeNet/400 Release 3 .


SafeNet/400 and NSafe/400 Lite Add Security Options


April 24, 1998

Saranac Lake, NY - Kisco Information Systems makes two announcements today in the AS/400 network security field. First is the immediate availability of Release 3 of its SafeNet/400, a security package for the IBM AS/400 developed by MP Associates of Westchester, Inc. The second announcement is a new product called NSafe/400 Lite. SafeNet/400 gives AS/400 shops full control over users who access their system over network connections. NSafe/400 Lite provides control of user access to server functions along with the logging and analysis features from SafeNet/400.

SafeNet/400 grants or denies permission to network users who attempt to access various server functions built-in to OS/400, such as SQL, ODBC, DRDA, PC transfer requests and more. Access can be allowed at various levels, ranging from completely open to totally restricted. Users control access on a user-by-user basis. SafeNet/400 is a non-invasive product and does not require any changes to user profiles or any other existing security configuration.

Release 3 of SafeNet/400 adds many new security points to those already established under earlier releases. The product now includes protection for the following additional servers:

  • Workstation Gateway Server
  • REXEC Server
  • TFTP Server
  • Enhanced SQL Server for multiple objects within a request (long strings)
  • DRDA Server (for non-IBM ODBC clients)

SafeNet/400 now covers a total of 30 server points for network users, more than any other product on the market today.

Besides the new security points covered, this new release also expands on many of its existing features. SafeNet/400 now has enhanced support for group profiles, available to customers with licenses for unlimited usage. It also now provides for immediate notification for security violations as they occur. The product also gives customers a unique on-line tool to pre-test various network transactions to see how they will be treated.

NSafe/400 Lite is a subset of SafeNet/400 and is available at a reduced cost. It allows users to control user access to specific server functions on the AS/400. It also includes all of the security logging features of SafeNet/400. This will allow customers to provide first level access controls while monitoring security on their system. NSafe/400 lets you see exactly how various users are accessing the system via network connections. At any time, NSafe/400 Lite can be upgraded to a full installation of SafeNet/400.

When IBM ships OS/400, they leave all of the OS/400 server functions wide open and available for all kinds of network access activity. For instance, a user with database software on their desktop and a Client Access/400 connection can access any file on the AS/400, and even perform update or delete operations. While making data available to users is important, control and protection of data integrity is crucial. SafeNet/400 provides the tools to guarantee integrity while still allowing access.

SafeNet/400 looks at every incoming network request. It then acts on each one, depending on the level of security that has been defined. User-based rules are checked and when a network request is received, those not permitted are rejected.

At the most basic level, SafeNet/400 will simply log all network requests. The log is then available for review and reporting. From this log, you can determine what type of network requests are coming to your system. You can then pinpoint any security exposures your system may have.

Once you have produced and analyzed your baseline logs, you can begin to tighten access controls. SafeNet/400 enables you to build rule sets by OS/400 server function and by user profile. You can turn off specific server functions, thereby denying all access. You can also limit the ways that each server function is used.

For each user profile, SafeNet/400 grants access to your system at the object level. You can restrict users to read-only access or grant more comprehensive permission. The object level controls work by giving users permission to objects by library name and object name. Permission is granted on an object-by-object basis, by a generic object name or globally for an entire library.

SafeNet/400 is available from Kisco Information Systems. The base package costs $1,995.00 which includes support for up to 25 network users. More users can be added at an additional cost.

NSafe/400 Lite is available with a fixed price of $995.00. At any time, it can be upgraded to SafeNet/400 for the price difference between the two products.

For more information, contact Kisco Information Systems, 89 Church Street, Mount Kisco, NY 12983. Phone: (518) 897-5002, Fax: (518) 897-5003, E-mail: Sales@Kisco.com or visit our site on the World Wide Web at http://www.kisco.com.

# # #

Press Contact Information:

Rich Loeber, President

Kisco Information Systems
89 Church Street
Saranac Lake, New York 12983

Phone: 518-897-5002, Fax: 518-897-5003
E-mail: Sales@Kisco.com
URL: http://www.kisco.com

Kisco Information Systems 89 Church Street Saranac Lake, NY 12983
phone: 518.897.5002 | fax: 518.897.5003
sales@kisco.com about kisco kisco
products product
support kisco
consulting services useful