Book description
The IBM z990 includes both standard cryptographic hardware and
optional cryptographic features, to give flexibility and growth
capability. IBM has a long history of providing hardware
cryptographic solutions, from the development of Data Encryption
Standard (DES) in the 1970s to delivering the only integrated
cryptographic hardware in a server to achieve the US Government's
highest FIPS 140-2 Level 4 rating for secure cryptographic
hardware.
This IBM Redbooks publication is designed to help you understand
and implement the z/OS Cryptographic PCIXCC and PCICA cards.
Although this book focuses on the enablement of the z/OS PCIXCC and
PCICA products, cryptography and the available services on z/OS are
also discussed and explained, with special attention given to the
new Trusted Key Entry (TKE V4) workstation.
This book also reviews the tools that are available on z/OS for
monitoring of the z990 cryptographic hardware utilization plus the
analysis of performance.
Table of contents
- Notices
- Preface
- Chapter 1: Introduction
- Chapter 2: CPACF, PCICA, and PCIXCC product overview
- Chapter 3: Planning and hardware installation
-
Chapter 4: PCIXCC using TKE V4
- Introduction to the TKE V4 Workstation
- TKE workstation TCP/IP setup
-
TKE application: managing host Crypto coprocessors
- Managing modules
- PCIXCC setup on the TKE workstation (1/2)
- PCIXCC setup on the TKE workstation (2/2)
- Manage and update the Crypto module notebook on TKE (1/2)
- Manage and update the Crypto module notebook on TKE (2/2)
- PCIXCC module notebook (1/8)
- PCIXCC module notebook (2/8)
- PCIXCC module notebook (3/8)
- PCIXCC module notebook (4/8)
- PCIXCC module notebook (5/8)
- PCIXCC module notebook (6/8)
- PCIXCC module notebook (7/8)
- PCIXCC module notebook (8/8)
- Backing up the TKE files
- 4753 Key Token Migration facility
- Chapter 5: ICSF support for CPACF, PCIXCC, and PCICA
- Chapter 6: Performance and monitoring
-
Appendix A: Exploiters
- The APIs
-
Overview of the IBM exploiters
- z/OS Open Cryptographic Services Facility (OCSF)
- IBM HTTP Server for z/OS
- z/OS LDAP server and client
- CICS Transaction Server and CICS Transaction Gateway
- z/OS TN3270 server
- z/OS Firewall Technologies
- GSKKYMAN
- z/OS DCE
- z/OS Network Authentication Service (Kerberos)
- Payment processing products
- VTAM Session Level Encryption
- RACF
- z/OS Public Key Infrastructure (PKI) services
- Crypto Based Transactions (CBT) banking solution
- Java cryptography
- Related publications
- Index (1/2)
- Index (2/2)
- Back cover
Product information
- Title: IBM eServer zSeries 990 (z990) Cryptography Implementation
- Author(s):
- Release date: August 2004
- Publisher(s): IBM Redbooks
- ISBN: None
You might also like
article
Preparing for Disruptions Through Early Detection
Detecting the potential for disruptions to business operations — ideally before the disruptions occur — can …
book
Online Security for the Business Traveler
Whether attending conferences, visiting clients, or going to sales meetings, travel is an unavoidable necessity for …
book
Handbook on Securing Cyber-Physical Critical Infrastructure
The worldwide reach of the Internet allows malicious cyber criminals to coordinate and launch attacks on …
book
System z Crypto and TKE Update
This IBM® Redbooks® publication provides detailed information about the implementation of hardware cryptography in the System …