Maximizing Security with LinuxONE

An IBM Redpaper publication

Published 10 August 2020

cover image

ISBN-10: 0738458988
ISBN-13: 9780738458984
IBM Form #: REDP-5535-01
(65 pages)

More options

Rate and comment

Authors: Lydia Parziale, Leticia Alexander, Yongkook Kim, Rushir Patel, Narjisse Zaki

Abstract

LinuxONE® is a hardware system that is designed to support and use the Linux operating system based on the value of its unique underlying architecture. LinuxONE can be used within a private and multi-cloud environment to support a range of workloads and service various needs.

On LinuxONE, security is built into the hardware and software.

This IBM® Redpaper® publication gives a broad understanding of how to use the various security features that make the most of and complement the LinuxONE hardware security features, including the following examples:


  • Hardware accelerated encryption of data, which is delivered with near-zero overhead by the on-chip Central Processor Assist for Cryptographic Function (CPACF) and a dedicated Crypto Express adapter.
  • Virtualization and industry-leading isolation capabilities with PR/SM, EAL 5+ LPARs, DPM, KVM, and IBM z/VM®.
  • The IBM Secure Service Container technology, which provides workload isolation, restricted administrator access, and tamper protection against internal threats, including from systems administrators.
  • Other technologies that use LinuxONE security capabilities and practical use cases for these technologies.


This publication was written for IT executives, architects, specialists, security administrators, and others who consider security for LinuxONE.

Follow IBM Redbooks

Follow IBM Redbooks