IBM eServer zSeries 990 (z990) Cryptography Implementation
An IBM Redbooks publication
Note: This is publication is now archived. For reference only.
The IBM z990 includes both standard cryptographic hardware and optional cryptographic features, to give flexibility and growth capability. IBM has a long history of providing hardware cryptographic solutions, from the development of Data Encryption Standard (DES) in the 1970s to delivering the only integrated cryptographic hardware in a server to achieve the US Government's highest FIPS 140-2 Level 4 rating for secure cryptographic hardware.
This IBM Redbooks publication is designed to help you understand and implement the z/OS Cryptographic PCIXCC and PCICA cards. Although this book focuses on the enablement of the z/OS PCIXCC and PCICA products, cryptography and the available services on z/OS are also discussed and explained, with special attention given to the new Trusted Key Entry (TKE V4) workstation.
This book also reviews the tools that are available on z/OS for monitoring of the z990 cryptographic hardware utilization plus the analysis of performance.
Chapter 1. Introduction
Chapter 2. CPACF, PCICA, and PCIXCC product overview
Chapter 3. Planning and hardware installation
Chapter 4. PCIXCC using TKE V4
Chapter 5. ICSF support for CPACF, PCIXCC, and PCICA
Chapter 6. Performance and monitoring
Appendix A. Exploiters