2779 - 使用 IBM PowerSC 安全措施（包括自定义事件）实现网络弹性.pdf

1、IBM TechXchange 2025 Conference 2779 Cyber Resiliency Using IBM PowerSC Security Measures,including Custom EventsStephen Dominguez-IBMIBM TechXchange|2025 IBM Corporation1#IBMTechXchangeAbout meZTEA creator and lead AIX,Linux and PowerSC Technical Consultant1999 2009:IBM Unix Product TestWebSM Test

2、LeadJava Programming CertificationHMC Test lead for Power 4&Power 5LDAP,KRB5,NIS Test leadCreated JMALT,a telnet simulator to stress test AIX security2009 present:IBM Lab Services(Now IBM TEL)Primarily AIX,LDAP&PowerSC security consultingAssisted hundreds of Power customersSome Linux and OpenShift S

3、ecurityHobbies:MusicCountry and west-coast dancingNFLTennisAgenda010203IBM Zero Trust Execution for AIX(ZTEA)PowerSC Custom EventsIBM Power Cyber VaultIBM TechXchange|2025 IBM CorporationWhat You will LearnIntroduction to ZTEAWhat are PowerSC Custom Events What is IBM Power Cyber Vault(CV)How CV use

4、s Custom Events&ZTEAIBM TechXchange|2025 IBM Corporation4Agenda010203IBM Zero Trust Execution for AIX(ZTEA)PowerSC Custom EventsIBM Power Cyber VaultIBM TechXchange|2025 IBM Corporationhttps:/ibm.biz/ibm_zteaWhat is ZTEA?New IBM Product,1st official GA,August 1,2024Provides a malware defense for AIX

5、 using a Zero Trust approachhttps:/ibm.biz/ibm_zteaZTEAs Focus is the ExecutableAn AIX LPAR could have a million of filesOf that million,a small percentage are executables,8,000 12,000(estimate)Of those 8-12 thousand executables,possibly only 1000 of those executables will ever actually be executed

6、by the AIX kernelThats where ZTEA comes in,when a file is executed by the AIX kernel,ZTEA is going to use up to 3 different security measures to determine if the executable is malwarehttps:/ibm.biz/ibm_zteaWhat is Zero Trust?.a new model for cybersecurity(for todays complex enterprises).(NIST SP 800