IBM CICS Transaction Server Feature Pack for Security Token Extensions further enhances operational efficiency by adding support for SAML security tokens

IBM United States Software Announcement 213-461
October 8, 2013


Table of contents
Overview Overview Publications Publications
Key prerequisites Key prerequisites Technical information Technical information
Planned availability date Planned availability date Ordering information Ordering information
Description Description Terms and conditions Terms and conditions
Product positioning Product positioning Prices Prices
Program number Program number  Order now Order now


Top rule
At a glance
Bottom rule

A new feature pack for CICS® Transaction Server for z/OS® ( CICS TS) further enhances operational efficiency by adding support for Security Assertion Markup Language (SAML) security tokens

CICS TS Feature Pack for Security Token Extensions V1.0 adds SAML security tokens support to CICS TS V4.2 and CICS TS V5.1, and includes:

For ordering, contact your IBM® representative, an IBM Business Partner, or IBM Americas Call Centers at 800-IBM-CALL (Reference: LE00).



Back to topBack to top
 
Top rule
Overview
Bottom rule

A new feature pack for CICS Transaction Server for z/OS ( CICS TS) further enhances operational efficiency by adding support for Security Assertion Markup Language (SAML) security tokens

CICS TS Feature Pack for Security Token Extensions V1.0 provides the capability for application security controls using SAML security tokens. The SAML implementation within CICS TS is Java-based, further increasing operational efficiency by enabling the SAML security token processing to be offloaded to specialty engines. Additionally, utilizing a standards-based approach to security can reduce or remove the need to create, maintain, and manage custom security infrastructure.

The CICS TS Feature Pack for Security Token Extensions V1.0 is supported by CICS TS V4.2 and CICS TS V5.1.



Back to topBack to top
 
Top rule
Key prerequisites
Bottom rule

CICS TS Feature Pack for Security Token Extensions V1.0 is supported on CICS TS V4.2 and CICS TS V5.1.

For CICS TS V4.2, the minimum required level of operating system is IBM z/OS V1.11 (5694-A01). The minimum required level of Java™ is IBM 64-bit SDK for z/OS , Java Technology Edition V6.0.1.

For CICS TS V5.1, the minimum required level of operating system is IBM z/OS V1.13 (5694-A01). The minimum required level of Java is IBM 64-bit SDK for z/OS , Java Technology Edition, V7 SR1.

For further details, refer to the Hardware requirements and Software requirements sections.



Back to topBack to top
 
Top rule
Planned availability date
Bottom rule

October 11, 2013



Back to topBack to top
 
Top rule
Description
Bottom rule

CICS TS Feature Pack for Security Token Extensions V1.0

This feature pack will provide the capability for application security controls using SAML security tokens. This will allow CICS applications to validate SAML tokens and extract attributes from the tokens that can be used to limit access to resources, or customize the services available to a user. Support is delivered for a linkable interface for SAML-aware applications and inbound, SOAP web services. The feature pack supports the SAML 1.1 and SAML 2.0 levels of the Organization for the Advancement of Structured Information Standards (OASIS) standard.

SAML is an XML-based framework for describing and exchanging security information between online business partners. This security information is expressed in the form of portable SAML assertions that applications working across security domain boundaries can trust. The addition of SAML to the existing rich palette of security capabilities greatly simplifies the secure use of CICS applications by a wide range of distributed and mobile applications.

Linkable interface

An API, which consists of a linkable interface, uses a channel with a set of containers. A sample application and SAML token is provided along with a sample JVM profile. This sample can be used to validate the installation.

Web services

Inbound SOAP web services are supported using the CICS pipeline, which validates the SAML token and extracts it into containers.

With the CICS Security Token Extensions feature pack you can configure CICS pipelines to validate SAML assertions and make information available to CICS applications. With the supplied sample configurations, you can easily enable provider pipeline resources to validate a SAML assertion. The feature pack can also extract information from the SAML token to make it easily accessible as read-only containers within your CICS applications.

Alternatively, with the linkable interface, you can write your own SAML-aware, front-end interface to an application.

The linkable interface and SOAP web service configuration allows you to specify whether SAML token validation requires SAML tokens to be digitally signed. This gives you the flexibility of deciding where digital signature validation is most efficiently performed.

The CICS Security Token Extensions feature pack does not support SAML bindings, profiles, or protocols.

Accessibility by people with disabilities

A US Section 508 Voluntary Product Accessibility Template (VPAT) containing details on accessibility compliance can be requested at

http://www.ibm.com/able/product_accessibility/index.html

Section 508 of the US Rehabilitation Act

CICS TS Feature Pack for Security Token Extensions V1.0 is capable as of October 11, 2013, when used in accordance with IBM associated documentation, of satisfying the applicable requirements of Section 508 of the Rehabilitation Act, provided that any assistive technology used with the product properly interoperates with it.



Back to topBack to top
 
Top rule
Product positioning
Bottom rule

IBM has a long history of delivering technologies that allow the reuse and service enablement of CICS applications and extends the reach of core CICS business applications to new channels. Access to core enterprise assets from mobile devices has rapidly become mainstream, with core CICS technologies such as XML, Web Services, HTML, and RESTful services that play a significant part in this evolution. Feature packs for CICS TS deliver important new capabilities in a fully supported manner outside of the normal release cycle.



Back to topBack to top
 
Top rule
Reference information
Bottom rule

For further information on CICS TS V5.1, refer to Software Announcement 212-325, dated October 3, 2012.



Back to topBack to top
 
Top rule
Program number
Bottom rule

Program        Program
number    VRM  name

5655-Y49  1.0  IBM CICS TS Feature Pack for Security Token Extensions
 
5655-Y55  1.0  IBM CICS TS Feature Pack for Security Token Extensions
               Subscription and Support
 

Product identification number

                    Subscription and
Program PID number  Support PID number
 
5655-Y49            5655-Y55
 


Back to topBack to top
 
Top rule
Offering Information
Bottom rule

Product information is available via the Offering Information website

http://www.ibm.com/common/ssi


Back to topBack to top
 
Top rule
Publications
Bottom rule

The IBM Publications Center

http://www.ibm.com/shop/publications/order

The Publications Center is a worldwide central repository for IBM product publications and marketing material with a catalog of 70,000 items. Extensive search facilities are provided. Payment options for orders are via credit card (in the US) or customer number for 20 countries. A large number of publications are available online in various file formats, and they can all be downloaded by all countries, free of charge.

The following Program Directory is available as softcopy only and can be downloaded from the Publications Center:

Publication                                              Form number

CICS TS Feature Pack for Security Token Extensions V1.0  GI13-3323
 

The following translated editions of the What's New publication are also available in softcopy only, from the IBM Publications Center:

Title                              Form number

What's New (Brazilian Portuguese)  G517-0216
What's New (Japanese)              GA88-4839
What's New (Simplified Chinese)    G151-1833
What's New (Spanish)               GC11-8127
 
IBM z/OS software products collection kit

The collection kit (SK4T-4949) contains books in PDF format for a range of IBM z/OS products, including members of the CICS family, and is available for download from the Publications Center from September 30, 2013. Visit

http://www.ibm.com/e-business/linkweb/publications/servlet/pbi.wss

Business Partner information

If you are a Direct Reseller - System Reseller acquiring products from IBM , you may link directly to Business Partner information for this announcement. A PartnerWorld® ID and password are required (use IBM ID).

https://www.ibm.com/partnerworld/mem/sla.jsp?num=213-461


Back to topBack to top
 
Top rule
Technical information
Bottom rule

Specified operating environment

Hardware requirements

Processor: CICS TS runs on any IBM System z® machine that supports the required z/OS operating system.

Software requirements

To use the CICS TS Feature Pack for Security Token Extensions V1.0, you must have the correct versions of software and service installed. For more details, depending on your installed release of CICS TS, visit

http://pic.dhe.ibm.com/infocenter/cicsts/v4r2/topic/com.ibm.cics.ts.securityextensions. doc/welcome/WelcomePage.html
http://pic.dhe.ibm.com/infocenter/cicsts/v5r1/topic/com.ibm.cics.ts.securityextensions. doc/welcome/WelcomePage.html

A prerequisite, CICS TS V4.2 with APAR PM82005 applied, or CICS TS V5.1 with APAR PM82012 applied, is required for this feature pack.

Java Runtime Environment

For CICS TS V4.2, the IBM 64-bit SDK for z/OS , Java Technology Edition V6.0.1, or later, is required.

For CICS TS V5.1, the IBM 64-bit SDK for z/OS , Java Technology Edition V7 SR1, or later, is required.

The IBM SDK for z/OS is available, without charge, on tape or by download. Visit

http://www.ibm.com/servers/eserver/zseries/software/java/

The program's specifications and specified operating environment information may be found in documentation accompanying the program, if available, such as a README file, or other information published by IBM , such as an announcement letter. Documentation and other program content may be supplied only in the English language.

Limitations

For additional information, refer to Usage restriction topic in the Terms and conditions section of this announcement, or to the license information document that is available on the IBM Software License Agreement website

http://www.ibm.com/software/sla/sladb.nsf

User group requirements

Customer and User Group requirements

Requirements for CICS TS, and feature packs for CICS TS can be created, viewed, and voted for in the IBM Request For Enhancement (RFE) community. Visit

http://www.ibm.com/developerworks/rfe/

Planning information

Direct customer support

Direct customer support is provided by IBM Operational Support Services - SoftwareXcel. This fee service enhances your productivity by providing voice and electronic access into the IBM support organization. IBM Operational Support Services - SoftwareXcel helps answer questions pertaining to usage and suspected software defects for eligible products.

Installation and technical support is provided by Global Services. For more information call 800-IBM-4YOU (426-4968).

For technical support or assistance, contact your IBM representative or visit

http://www.ibm.com/support
Packaging

Physical delivery

The following hardcopy documents and CD-ROM are shipped, together with the basic machine-readable material for the product:

Certain other items, such as specification sheets of related IBM products, might be included.

Electronic delivery

To download a CICS Information Center, visit the IBM Publications Center. Search for the form number, then select download. The following publications are available:

For more information, visit

http://www.ibm.com/shop/publications/order

This program, when downloaded from a website, contains the applicable IBM license agreement and License Information, if appropriate, and will be presented for acceptance at the time of installation of the program. For future reference, the license and License Information will be stored in a directory such as LICENSE.TXT.

Security, auditability, and control

The CICS TS feature pack described in this announcement uses the security and auditability features of the supported underlying operating systems. The customer is responsible for evaluation, selection, and implementation of security features, administrative procedures, and appropriate controls in application systems and communication facilities. The customer is responsible for evaluation, selection, and implementation of security features, administrative procedures, and appropriate controls in application systems and communication facilities.



Back to topBack to top
 
Top rule
Software Services
Bottom rule

IBM Software Services has the breadth, depth, and reach to manage your services needs. You can leverage the deep technical skills of our lab-based, software services team and the business consulting, project management, and infrastructure expertise of our IBM Global Services team. Also, we extend our IBM Software Services reach through IBM Business Partners to provide an extensive portfolio of capabilities. Together, we provide the global reach, intellectual capital, industry insight, and technology leadership to support a wide range of critical business needs.

To learn more about IBM Software Services or to contact a Software Services sales specialist, visit

http://www.ibm.com/software/sw-services/


Back to topBack to top
 
Top rule
Ordering information
Bottom rule

Ordering z/OS through the Internet

Shopz provides an easy way to plan and order your z/OS ServerPac or CBPDO. It will analyze your current installation, determine the correct product migration, and present your new configuration based on z/OS . Additional products can also be added to your order (including determination of whether all product requisites are satisfied). Shopz is available in the US and several countries in Europe. In countries where Shopz is not available yet, contact your IBM representative (or IBM Business Partner) to handle your order via the traditional IBM ordering process. For more details and availability, visit the Shopz website at

http://www14.software.ibm.com/webapp/ShopzSeries/ShopzSeries.jsp

Charge metric

Program name                        PID number  Charge metric

CICS TS Feature Pack for Security   5655-Y49    Unlimited Installs
Token Extensions V1.0
 
CICS TS Feature Pack for Security   5655-Y55    Unlimited Installs
Token Extensions
 - Software Subscription & Support
 

Basic license

To order, specify the program product number and the appropriate license or charge option. Also, specify the desired distribution medium. To suppress shipment of media, select the license-only option in CFSW.

Program name: CICS TS Feature Pack for Security Token Extensions V1.0
Program PID:  5655-Y49
 
Entitlement                         
identifier   Description            License option/Pricing metric

S0177DP      CICS TS Feature Pack   No charge
             for Security Token     Unlimited installs
             Extensions V1.0
 
Orderable 
supply ID    Language               Distribution medium
 
S0177DN      English                3590 Tape
 
Subscription and Support PID: 5655-Y55
 
Entitlement                           
identifier   Description              License option/Pricing metric
 
S0177F4      CICS TS Feature Pack     No charge, Unlimited installs
             for Security Token       SW S&S registration
             Extensions Subscription
             & Support
 
 
Orderable 
supply ID    Language                 Distribution medium
 
S0177F3      English                  Hardcopy pub
 

Subscription and Support

To receive voice technical support via telephone and future releases and versions at no additional charge, Subscription and Support must be ordered. The capacity of Subscription and Support (Value Units) must be the same as the capacity ordered for the product licenses.

To order, specify the Subscription and Support program number (PID) referenced above and the appropriate license or charge option.

IBM is also providing Subscription and Support for these products via a separately purchased offering under the terms of the IBM International Agreement for Acquisition of Software Maintenance. This offering:

When Subscription and Support is ordered, the charges will automatically renew annually unless cancelled by you.

The combined effect of the IPLA license and the Agreement for Acquisition of Software Maintenance gives you rights and support services comparable to those under the traditional ICA S/390® and System z license or its equivalent. To ensure that you continue to enjoy the level of support you are used to in the ICA business model, you must order both the license for the program and the support for the selected programs at the same Value Unit quantities.

Customized Offerings

Product deliverables are shipped only via CBPDO and ServerPac. These customized offerings are offered for Internet delivery in countries where ShopzSeries product ordering is available. Internet delivery reduces software delivery time and allows you to install software without the need to handle tapes. For more details on Internet delivery, refer to the Shopz help information at

http://www.software.ibm.com/ShopzSeries

You choose the delivery method when you order the software. IBM recommends Internet delivery. In addition to Internet and DVD, the supported tape delivery options include:

Most products can be ordered in ServerPac the month following their availability in CBPDO. z/OS can be ordered via CBPDO and ServerPac at general availability. Many products will also be orderable in a Product ServerPac without also having to order the z/OS operating system or subsystem.

Shopz and CFSW will determine the eligibility based on product requisite checking. For more details on the Product ServerPac, visit the Help section on the Shopz website at

http://www14.software.ibm.com/webapp/ShopzSeries/ShopzSeries.jsp

Production of software product orders will begin on the planned general availability date.



Back to topBack to top
 
Top rule
Terms and conditions
Bottom rule

The information provided in this announcement letter is for reference and convenience purposes only. The terms and conditions that govern any transaction with IBM are contained in the applicable contract documents such as the IBM International Program License Agreement, IBM International Passport Advantage® Agreement, and the IBM Agreement for Acquisition of Software Maintenance.

Licensing

IBM International Program License Agreement including the License Information document and Proof of Entitlement (PoE) govern your use of the program. PoEs are required for all authorized use.

Agreement for Acquisition of Software Maintenance

The IBM Agreement for Acquisition of Software Maintenance (Z125-6011) applies for Software Subscription and Support (Software Maintenance) and does not require customer signatures.

This program is licensed under the IBM Program License Agreement (IPLA) and the associated Agreement for Acquisition of Software Maintenance, which provides for support with ongoing access to releases and versions of the program. This program has a one-time license charge for use of the program and an annual renewable charge for the enhanced support that includes telephone assistance (voice support for defects during normal business hours), as well as access to updates, releases, and versions of the program as long as support is in effect.

IBM System z Operational Support Services - SoftwareXcel is an option if you desire added services.

License Information form number
Program name                       LI form number
 
CICS TS Feature Pack for Security
 Token Extensions V1.0             L-ACRR-95GJ6Z
 

The program's License Information will be available for review on the IBM Software License Agreement website

http://www.ibm.com/software/sla/sladb.nsf
Limited warranty applies

Yes

Money-back guarantee

If for any reason you are dissatisfied with the program and you are the original licensee, you may obtain a refund of the amount you paid for it, if within 30 days of your invoice date you return the program and its PoE to the party from whom you obtained it. If you downloaded the program, you may contact the party from whom you acquired it for instructions on how to obtain the refund.

For clarification, note that for programs acquired under any of IBM's On/Off Capacity on Demand (On/Off CoD) software offerings, this term does not apply since these offerings apply to programs already acquired and in use by you.

Volume orders (IVO)

No

Passport Advantage applies

No

Usage restriction

Yes

Software Subscription and Support applies

No. For operating system software, the revised IBM Operational Support Services - SoftwareXcel offering will provide support for those operating systems and associated products that are not available with the Software Subscription and Support (Software Maintenance) offering.

This will ensure total support coverage for your enterprise needs, including IBM and selected non-IBM products. For complete lists of products supported under both the current and revised offering, visit

http://www.ibm.com/services/sl/products
System i® Software Maintenance applies

No

Variable charges apply

No

Educational allowance available

Yes. A 15% education allowance applies to qualified education institution customers.



Back to topBack to top
 
Top rule
Statement of good security practices
Bottom rule

IT system security involves protecting systems and information through prevention, detection, and response to improper access from within and outside your enterprise. Improper access can result in information being altered destroyed or misappropriated or can result in misuse of your systems to attack others. Without a comprehensive approach to security, no IT system or product should be considered completely secure and no single product or security measure can be completely effective in preventing improper access. IBM systems and products are designed to be part of a comprehensive security approach, which will necessarily involve additional operational procedures, and may require other systems, products, or services to be most effective. IBM does not warrant that systems and products are immune from the malicious or illegal conduct of any party.



Back to topBack to top
 
Top rule
Prices
Bottom rule

For additional information and current prices, contact your local IBM representative.

Information on charges is available at

http://www.ibm.com/support

Choose the option entitled Purchase/upgrade tools.

To order, specify the program product number and the appropriate license or charge option. Also, specify the desired distribution medium. To suppress shipment of media, select the license-only option in CFSW.

Program name: CICS TS Feature Pack for Security Token Extensions V1.0
Program PID:  5655-Y49
 
Entitlement                                  
identifier   Description                     License option/Pricing metric

S0177DP      CICS TS Feature Pack for        No charge
             Security Token Extensions V1.0  Unlimited installs 
 
Orderable 
supply ID    Language                        Distribution medium
-
S0177DN      English                         3590 Tape
 
Subscription and Support PID: 5655-Y55
 
Entitlement                            
identifier   Description              License option/Pricing metric
 
S0177F4      CICS TS Feature Pack     No charge, Unlimited installs
             for Security Token       SW S&S registration
             Extensions Subscription
             & Support
 
 
Orderable 
supply ID    Language                 Distribution medium

S0177F3      English                  Hardcopy pub
 

IBM Global Financing

IBM Global Financing offers competitive financing to credit-qualified customers to assist them in acquiring IT solutions. Offerings include financing for IT acquisition, including hardware, software, and services, from both IBM and other manufacturers or vendors. Offerings (for all customer segments: small, medium, and large enterprise), rates, terms, and availability can vary by country. Contact your local IBM Global Financing organization or visit

http://www.ibm.com/financing

IBM Global Financing offerings are provided through IBM Credit LLC in the United States, and other IBM subsidiaries and divisions worldwide to qualified commercial and government customers. Rates are based on a customer's credit rating, financing terms, offering type, equipment type, and options, and may vary by country. Other restrictions may apply. Rates and offerings are subject to change, extension, or withdrawal without notice.

Financing from IBM Global Financing helps you preserve cash and credit lines, enables more technology acquisition within current budget limits, permits accelerated implementation of economically attractive new technologies, offers payment and term flexibility, and can help match project costs to projected benefits. Financing is available

For more financing information, visit

http://www.ibm.com/financing


Back to topBack to top
 
Top rule
Order now
Bottom rule

To order, contact the Americas Call Centers or your local IBM representative, or your IBM Business Partner.

To identify your local IBM representative or IBM Business Partner, call 800-IBM-4YOU (426-4968).

Phone:      800-IBM-CALL (426-2255)
Fax:        800-2IBM-FAX (242-6329)
For IBM representative: callserv@ca.ibm.com
For IBM Business Partner: pwcs@us.ibm.com
Mail:       IBM Teleweb Customer Support
            ibm.com® Sales Execution Center, Americas North
            3500 Steeles Ave. East, Tower 3/4
            Markham, Ontario
            Canada
            L3R 2Z1

Reference: LE001

The Americas Call Centers, our national direct marketing organization, can add your name to the mailing list for catalogs of IBM products.
Note: Shipments will begin after the planned availability date.

Trademarks

CICS, z/OS, IBM, PartnerWorld, System z, AIX, S/390, Passport Advantage, System i and ibm.com are registered trademarks of IBM Corporation in the United States, other countries, or both.

Linux is a registered trademark of Linus Torvalds in the United States, other countries, or both.

Intel is a trademark of Intel Corporation or its subsidiaries in the United States and other countries.

Microsoft and Windows are trademarks of Microsoft Corporation in the United States, other countries, or both.

Other company, product, and service names may be trademarks or service marks of others.

Terms of use

IBM products and services which are announced and available in your country can be ordered under the applicable standard agreements, terms, conditions, and prices in effect at the time. IBM reserves the right to modify or withdraw this announcement at any time without notice. This announcement is provided for your information only. Additional terms of use are located at:

http://www.ibm.com/legal/us/en/

For the most current information regarding IBM products, consult your IBM representative or reseller, or visit the IBM worldwide contacts page

http://www.ibm.com/planetwide/us/

Share this page

Digg Linked In

Contact IBM

Considering a purchase?