IBM OS/390 Server User Manual


 
posit. A number specified for each class in the class
descriptor table that identifies a set of flags that control
RACF processing options. See the keyword description
for posit in
OS/390 Security Server (RACF) Macros and
Interfaces
.
process. (1) A function being performed or waiting to
be performed. (2) An executing function, or one waiting
to execute. (3) A function, created by a fork() request,
with three logical sections:
Text, which is the function's instructions
Data, which the instructions use but do not change
Stack, which is a push-down, pop-up save area of
the dynamic data that the function operates upon
The three types of processes are:
User processes, which are associated with a user at
a workstation
Daemon processes, which do systemwide functions
in user mode, such as printer spooling
Kernel processes, which do systemwide functions in
kernel mode, such as paging
A process can run in an OpenEdition user address
space, an OpenEdition forked address space, or an
OpenEdition kernel address space. In an MVS system,
a process is handled like a task. See also
task
. (4) An
address space and one or more threads of control that
execute within that address space and their required
system resources. (5) An address space and single
thread of control that executes within that address
space and its required system resources. A process is
created by another process issuing the fork() function.
The process that issues fork() is known as the parent
process, and the new process created by the fork() is
known as the child process. (6) A sequence of actions
required to produce a desired result. (7) An entity
receiving a portion of the processor's time for executing
a program. (8) An activity within the system that is
started by a command, a shell program, or another
process. Any running program is a process. (9) A
unique, finite course of events defined by its purpose or
by its effect, achieved under given conditions. (10) Any
operation or combination of operations on data.
(11) The current state of a program that is
running—including a memory image, the program data,
the variables used, the general register values, the
status of opened files used, and the current directory.
Programs running in a process must be either operating
system programs or user programs. (12) A running
program including the memory occupied, the open files,
the environment, and other attributes specific to a
running program.
product-sensitive programming interface (PSPI). A
programming interface intended to be used only for
specialized tasks such as: diagnosis, modification,
monitoring, repairing, tailoring, and tuning of the IBM
software product and that depends on or requires the
customer to understand significant aspects of the
design and implementation of the IBM software product.
See also
general-use programming interface (GUPI)
.
profile. Data that describes the significant
characteristics of a user, a group of users, or one or
more computer resources. See also
data set profile,
discrete profile,
general resource profile,
generic profile,
group profile,
and
user profile
.
program access to data sets (PADS). A RACF
function that enables an authorized user or group of
users to access one or more data sets at a specified
access authority only while running a specified
RACF-controlled program. See also
program control
.
program control. A RACF function that enables an
installation to control who can run RACF-controlled
programs. See also
program access to data sets
.
PSPI. See
product-sensitive programming interface
.
R
RACF. See Resource Access Control Facility.
RACF database. A collection of interrelated or
independent data items stored together without
unnecessary redundancy to serve Resource Access
Control Facility (RACF).
RACF remote sharing facility (RRSF). RACF
services that function within the RACF subsystem
address space to provide network capabilities to RACF.
RACF remove ID utility. A RACF utility which
identifies references to user IDs and group IDs in the
RACF database. The utility can be used to find
references to residual user IDs and group IDs or
specified user IDs and group IDs. The output from this
utility is a set of RACF commands that can be used to
remove the references from the RACF database after
review and possible modification by the customer.
RACF report writer. A RACF function that produces
reports on system use and resource use from
information found in the RACF SMF records.
RACF SMF data unload utility. A RACF utility that
enables installations to create a sequential file from the
security relevant audit data. The sequential file can be
used in several ways: viewed directly, used as input for
installation-written programs, and manipulated with
sort/merge utilities. It can also be uploaded to a
database manager (for example, DB2) to process
complex inquiries and create installation-tailored reports.
RACF-protected. Pertaining to a resource that has
either a discrete profile, an applicable generic profile, or
a file or directory that doesn't have a profile, but is
protected with the File Security Packet (FSP). A data
Glossary 43