Skip to main content

By clicking Submit, you agree to the developerWorks terms of use.

The first time you sign into developerWorks, a profile is created for you. Select information in your developerWorks profile is displayed to the public, but you may edit the information at any time. Your first name, last name (unless you choose to hide them), and display name will accompany the content that you post.

All information submitted is secure.

  • Close [x]

The first time you sign in to developerWorks, a profile is created for you, so you need to choose a display name. Your display name accompanies the content you post on developerworks.

Please choose a display name between 3-31 characters. Your display name must be unique in the developerWorks community and should not be your email address for privacy reasons.

By clicking Submit, you agree to the developerWorks terms of use.

All information submitted is secure.

  • Close [x]

Select a language:

  • Close [x]
  • Close [x]

Security appliances

 

Page navigation

Cryptographic support

Presentation abstract
  • Introduction to the cryptographic support hardware features and the controlling software layers
  • Comparison of throughput and processor consumption when using hardware encryption and software encryption
  • Usage options for the zcrypt module
  • In kernel crypto support
  • Commands to verify that hardware encryption is enabled
View

Linux on system z cryptographic support

Creation date
March 2009
Last update
July 2010

Back to top

Exploiting IBM System z Cryptographic Hardware using JSSE

Abstract

This study measures performance and throughput for the Java Secure Socket Extension (JSSE) on Linux for IBM System z with Java 2 Platform, Enterprise Edition.

Data encryption is an important feature to ensure privacy and integrity of data sent using any type of network. This paper describes how to set up the cryptographic environment on IBM System z to obtain the benefit of the additional power of special purpose features CPACF and CEX2A using a client-server based Java application communicating using SSL with different cipher suites.

View

Exploiting IBM System z Cryptographic Hardware using JSSE

Creation date
January 2010

Back to top

Tivoli WebSEAL - Sizing and capacity planning

Abstract

WebSEAL provides an authentication and authorization mechanism based on Tivoli Access Manager. It enables an end-to-end Single Sign On (SSO) solution for secure transactions for WebSphere application servers.

Here WebSEAL is used as proxy inside a DMZ from a secure WebSphere Application server environment. Each server runs on virtual hardware under z/VM.

The paper describes how to setup the environment and how it performs in various scenarios. Additionally it shows the impressive advantage of the IBM system z cryptographic hardware features CPACF and CEX2C cards and how to setup the system to get cryptographic hardware support. It also demonstrates that the implementation of a DMZ with all its services and servers is a very good case for server consolidation on z/VM.

View

Tivoli WebSEAL - Sizing and Capacity Planning

Creation date
September 2009

Back to top

Performance of a webApp.secure environment

Abstract

WebScurity's webApp.secure™ protects Web application servers from Internet attacks. This utility of the IBM System z Linux Utility Services is a strategic direction, protecting Web applications from attacks in addition to traditional firewall and perimeter security.

This paper determines the performance of a webApp.secure environment. It shows that the implementation of a DMZ with all its services and servers is a very good case for server consolidation on z/VM.

View

Performance of a webApp.secure Environment

Creation date
November 2007

Back to top

Team

Please address any comments to the performance team: linux390@de.ibm.com

Acrobat

Get Adobe® Reader®

Share this page:

  • Close [x]

Follow developerWorks:

  • Close [x]