Many IBM products use the IBM Global Security Kit component for SSL and other encryption tasks. Oktawian Powązka has just published a new white paper at the security on developerWorks community that goes into detail about what you can and can't do with GSKit for FIPS and Suie B compliance. This white paper is a must read for anyone who has to worry about compliance to these stan
You might also be interested in:
Encrypting Data With Confidence:
IBM published a new white paper on encrypting data at enterprise scale. Learn about encrypting mission critical data with confidence and reduce security risks across the enterprise and beyond. Download "Encrypting Data With Confidence."
The IBM Global Security Kit version 8 (GSKit) can now test Thales's nShield Connect hardware cryptographic device. The GSKit testing statement for nShield Connect is restricted to cipher suites that include the RSA algorithm; 220.127.116.11 or later must be used.
Other devices already tested by GSKit V8 include SafeNet's PSG PCI HSM 600 and LunaSA HSM; the on-chip cryptography within the Ultra-SPARC T1 and T2 CMT processor (for Solaris 10 on Sparc); Thales's nShield 6000e F2 PCI-Express and nShield Edge; and the IBM Crypto Express3 (CEX3). Stay up to date on GSKit V8 PKCS#11 device integration support news.
GSKit V8 provides libraries and utilities for SSL communication. It comes installed with Informix 11.70 and the IBM Client Software Development Kit version 3.70; GSKit V8 is used by default.