6 protecting volumes from i/o operations, Overview of volume security for mainframe, Volume security for mainframe requirements – HP XP P9500 Storage User Manual

6 Protecting volumes from I/O operations

This chapter provides information on Volume Security for Mainframe.

Overview of Volume Security for Mainframe

Hitachi Volume Security for Mainframe protects data on your P9500 (P9500) from I/O operations
performed at mainframe hosts. Security can be applied to logical volumes to prohibit read/write
operations from specified mainframe hosts to specified logical volumes. With Volume Security for
Mainframe, you can protect data on logical volumes from being accidentally overwritten by
erroneous local or remote copy operations.

Volume Security for Mainframe can be used in conjunction with the Volume Security Port Security
Option for Mainframe. This optional program is used to specify P9500 ports through which hosts
can access logical volumes.

Using Volume Security for Mainframe you can manipulate up to 64 hosts and 65,280 logical
volumes for one P9500. Volume Security for Mainframe also enables you to create up to 64 security
groups, 64 host groups, and 64 volume groups for one P9500.

Volume Security for Mainframe operations are performed using the licensed Remote Web Console
software. The Remote Web Console software communicates directly with the P9500 via a local-area
network (LAN). Remote Web Console displays detailed Volume Security for Mainframe information
and allows you to configure and perform Volume Security for Mainframe operations for the
mainframe systems data stored on the P9500. For further details, refer to the HP P9000 Remote
Web Console User Guide.

Volume Security for Mainframe Requirements

Before using the Volume Security for Mainframe, confirm that the following program products have
been installed in Remote Web Console.

•

Volume Security for Mainframe

•

JAVA API

The storage system must be configured to conform to all hardware devices, microcode, and the
Remote Web Console requirements. In addition, the Volume Security for Mainframe license key
of must be installed in the Remote Web Console. To apply port-level security, you must install
Volume Security Port Security Option for Mainframe with Volume Security for Mainframe. For more
information on license keys or the program product installation, see the HP P9000 Remote Web
Console User Guide.

Volume Security for Mainframe Functions

The Volume Security for Mainframe feature protects data in your storage system from I/O operations
performed at mainframe hosts. Volume Security for Mainframe enables you to apply security to
volumes so that the specified mainframe hosts will be unable to read from and write to the specified
volumes. Volume Security for Mainframe also enables you to prevent data on volumes from being
overwritten by erroneous copy operations.

Volume Security for Mainframe can be used in conjunction with an optional program Volume
Security Port Security Option for Mainframe. This optional program can be used to specify P9500
ports through which hosts can access logical volumes.

In the P9500 documentation, volumes are sometimes referred to as logical devices or LDEVs. The
term LDEV security is used at times to refer to the security policy enabled by Volume Security for
Mainframe that you can apply to volumes.

Overview of Volume Security for Mainframe

139