Resource Access Control Facility

Resource Access Control Facility (RACF) is an IBM software security product that provides access control and auditing functions for the z/OS and z/VM operating systems.^[1] RACF was introduced in 1976.^[2] Originally called RACF it was renamed to z/OS Security Server (RACF), although many mainframe professionals still refer to it as RACF.^[3]

Its main features are:^[2]

Identification and verification of a user via user id and password check (authentication)
Identification, classification and protection of system resources
Maintenance of access rights to the protected resources (access control)
Controlling the means of access to protected resources
Logging of accesses to a protected system and protected resources (auditing)

RACF establishes security policies rather than just permission records. It can set permissions for file patterns—that is, set the permissions even for files that do not yet exist. Those permissions are then used for the file (or other object) created at a later time.^[4]

^ Winnard 1 (December 2015). IBM z/OS V2R2: Security. ISBN 0738441279.{{cite book}}: CS1 maint: numeric names: authors list (link) CS1 maint: year (link)
^ ^a ^b "IBM RACF". IBM. Retrieved August 17, 2012.
^ "z/OS Security Server (RACF)". www.ibm.com. 2015-07-02. Retrieved 2021-08-06.
^ Cite error: The named reference :0 was invoked but never defined (see the help page).

[1] Winnard 1 (December 2015). IBM z/OS V2R2: Security. ISBN 0738441279.{{cite book}}: CS1 maint: numeric names: authors list (link) CS1 maint: year (link)

[IBMRACF-2] "IBM RACF". IBM. Retrieved August 17, 2012.

[3] "z/OS Security Server (RACF)". www.ibm.com. 2015-07-02. Retrieved 2021-08-06.

[:0-4] Cite error: The named reference :0 was invoked but never defined (see the help page).

[1]

[2]

[3]

[4]