Mastering IBM i ACS Deployment – 02: Enforcing Security and Restrictions on IBM ACS

IBM i Access Client Solutions (ACS) – Restricting Features IBM i Access Client Solutions is a very powerful tool — and that’s exactly the problem. When you roll out IBM i Access Client Solutions (ACS) to your organization, handing every user the default, wide-open application is a massive security risk. Right out of the box,…

Read More

Mastering IBM i ACS Deployment – 01: IBM i ACS Deployment Methods

IBM i Access Client Solutions (ACS) – Deployment Methods and Deployment Wizard IBM i Access Client Solutions is a very powerful tool — and that’s exactly the problem. When you roll out IBM i Access Client Solutions (ACS) to your organization, handing every user the default, wide-open application is a massive security risk. Right out…

Read More
Homomorphic Encryption on IBM i

Homomorphic Encryption on IBM i – POC Report

Homomorphic Encryption on IBM i, We successfully validated the execution of it on the IBM i Power Systems architecture. By utilizing the PASE (Portable Application Solutions Environment) and Python 3.9, I transitioned from basic encryption tests to a comprehensive “Secure Payroll” simulation. Initially, I attempted to install TenSEAL on IBM, but I encountered an error….

Read More

IBM i Encryption Key Management – Part 1

IBM i Encryption Key Management is evolving beyond traditional platform-bound approaches, as organizations seek stronger control over how encryption keys are generated, stored, and used. While IBM i provides robust native encryption capabilities, modern security architectures increasingly demand centralized and scalable solutions. With the enforcement of regulatory frameworks such as the Central Bank of Sri…

Read More
The Compliance Gap Between IBM i Administrators and Security Teams

The Compliance Gap Between IBM i Administrators and Security Teams

In the world of enterprise IT, the IBM i (formerly AS/400) is a powerhouse of reliability. However, it often exists as an island. On one side, you have the IBM i Administrators, the guardians of uptime and performance. On the other, the Security and Compliance Officers, the guardians of data integrity and regulatory standards. IBM…

Read More
IBM i Object Ownership Chains: A Hidden Privilege Escalation Risk

IBM i Object Ownership Chains: A Hidden Privilege Escalation Risk

IBM i security discussions usually focus on special authorities, exit programs, and object-level permissions. Very few discussions go deep into object ownership chains, even though they can silently bypass carefully designed authority models. Ownership chains exist by design. They simplify application execution. But in real environments—especially legacy-heavy systems—they create unintended privilege escalation paths that remain…

Read More
What are IBM i Exit Points and Exit Programs

What are IBM i Exit Points and Exit Programs

Hey IBM i folks! IBM i is often described as a secure-by-design platform. This reputation does not come from object authority alone, but from a layered security architecture that allows administrators to intercept, inspect, and control how users and applications interact with the system. One of the most powerful—and often misunderstood—components of this architecture is…

Read More