226 IBM z13s Technical Guide
Provides the highest asymmetric (encrypted key)
encryption performance
-XX-
Disruptive process to enable - Note
a
Note
a
Note
a
Requires IOCDS definition - - - -
Uses CHPID numbers - - - -
Uses PCHIDs (one PCHID) - X X X
Requires CPACF enablement (FC 3863) X
b
X
b
X
b
X
b
Requires ICSF to be active - X X X
Offers UDX - X - -
Usable for data privacy: Encryption and decryption
processing
XXX-
Usable for data integrity: Hashing and message
authentication
XXX-
Usable for financial processes and key management
operations
-XX-
Crypto performance IBM RMF™ monitoring - X X X
Requires system master keys to be loaded - X X -
System (master) key storage - X X -
Retained key storage - X - -
Tamper-resistant hardware packaging - X X X
c
Designed for FIPS 140-2 Level 4 certification - X X X
Supports Linux applications that perform SSL
handshakes
---X
RSA functions - X X X
High-performance SHA-1 and SHA2 X X X -
Clear key DES or triple DES X - - -
AES for 128-bit, 192-bit, and 256-bit keys X X X -
Pseudorandom number generator (PRNG) X X X -
Clear key RSA - - - X
Europay, MasterCard and Visa (EMV) support - X - -
Public Key Decrypt (PKD) support for Zero-Pad option
for clear RSA private keys
-X--
Public Key Encrypt (PKE) support for Mod_Raised_to
Power (MRP) function
-XX-
Remote loading of initial keys in ATM - X - -
Improved key exchange with non-CCA systems - X - -
Functions or attributes CPACF CEX5C CEX5P CEX5A
To Next Page
Loading...
