Eldon Worley

Sometimes called the "father" of RACF, Worley pioneered the IBM mainframe security product that provides access control and auditing functionality for the z/OS and z/VM operating systems.

Born and raised in Corvallis, Oregon, he graduated from Oregon State University with a degree in Electrical Engineering. He served as a software scientist/engineer at IBM Research in San Jose for 28 years.

Worley pioneered Information Management Facility (IMF), a pathbreaking security system that was the underlying basis for the IBM security product Resource Access Control Facility (RACF). He contributed to the release of the original RACF release code, and numerous enhancements, including passwords, Global access, RACF address space, and the RACF Remote Sharing enhancement. He has also been involved with the review process of the RACF "Orange Book" B1 security enhancements.

Otherwise known as The Trusted Computer System Evaluation Criteria (TCSEC), the Orange Book was the United States Department of Defense standard that set basic assessment requirements for security controls built into a computer system. First published in 1983 and updated in 1985, the TCSEC was the centerpiece of the Rainbow Series of Department of Defense security publications.

Worley has served as Senior Product Architect at Vanguard, an independent commercial security software and consulting firm that contracted with financial institutions, insurance companies, government agencies, and many others, directing the Vanguard Enforcer product alterations necessary to achieve the EAL3+ evaluation. He has been a member of the Mainframe Executive Hall of Fame.