Secure Sockets Layer (SSL) support
SSL provides security for your interactions by securing the TCP/IP connection between the IMS™ TM resource adapter and IMS Connect.
- Internet eavesdropping
- Data theft
- Traffic analysis
- Data modification
- Trojan horse browser/server
The IMS TM resource adapter can communicates with IMS Connect through TCP/IP sockets. If the IMS TM resource adapter uses TCP/IP, you can use SSL to secure the TCP/IP communication between the two entities. The SSL support that is provided by the IMS TM resource adapter and IMS Connect uses a combination of public and private keys, along with symmetric key encryption schemes, to achieve client and server authentication, data confidentiality, and integrity. SSL runs in a layer above the TCP/IP communication protocol and allows an SSL-enabled server to authenticate itself to an SSL-enabled client and vice versa.
For an SSL connection between the IMS TM resource adapter and IMS Connect, the IMS TM resource adapter is considered the client and IMS Connect is considered the server. After authentication is complete, the server and client can establish an encrypted connection that also preserves the integrity of the data.
For SSL support in a WebSphere® Application Server environment, the IMS TM resource adapter uses the IBM® implementation of Java™ Secure Socket Extension (IBM JSSE). The SSL library is included WebSphere or Rational® development environments and in WebSphere Application Server.
- The IMS TM resource adapter supports only X.509 certificates and the JKS keystore type on distributed platforms (which include Linux for System z®) and the JKS keystore type, or RACF® keyrings on z/OS®.
- Transport Layer Security, Version 1 (TLS V1) is the successor to SSL 3.0 protocol. The IMS TM resource adapter supports TLS V1. TLS V1 is compatible with the earlier SSL 3.0 protocol.