How IBM Security Key Lifecycle Manager for z/OS works
Integrates with encrypting storage devices
IBM Security Key Lifecycle Manager for z/OS integrates with encrypting storage devices with hardware encryption for performance, Resource Access Control Facility (RACF), Integrated Cryptographic Service Facility (ICSF) and IBM Enterprise Key Management Foundation (EKMF). It provides a simple upgrade for existing Encryption Key Manager (EKM) customers.
Simplifies encryption key management
The solution uses native z/OS functions for security and auditing to reduce administrative overhead. It integrates hardware and software encryption to reduce complexity.
Automates encryption key data backup and recovery
Automated encryption key data backup and recovery offer enhanced data availability and integrity.
Provides a centralized hub for encryption key management
The solution uses the availability, scale and performance of IBM System z to provide a centralized hub for encryption key management.
Improves security for key serving
The key material is only served to known and verified devices in a protected manner, resulting in improved security for key serving.
Supported Storage and Non-Storage devices for IBM Security Key Lifecycle Manager for z/OS can be viewed at: