IBM Encryption Facility for z/OS exploits the existing strengths of the mainframe and the IBM z/OS operating system. It is a host-based facility that leverages existing centralized key management in z/OS and the hardware encryption capabilities of IBM mainframes. Release 2 of Encryption Facility for z/OS adds a new encryption open protocol: openPGP (Pretty Good Privacy) over the IBM proprietary format that was used in Release 1.

This IBM Redpaper provides a description and explanation of the openPGP and demonstrates its use, focusing on the wide interoperability capabilities it gives to Encryption Facility for z/OS. Consideration is also given to the fact that Release 2 is a Java application and the implications and benefits it brings to the mainframe.