Linux Webcast: What if even your Linux admin may not know your secrets?
Ingolf24 120000DRN3 Visits (1791)
The next Linux on IBM Z webcast is planned for tomorrow, October 17, 2018, 11 am EDT.
Title:: What if even your Linux admin may not know your secrets?
Abstract: Hardware security modules (HSMs) are tamper proof devices that meant to secure the most valuable secrets of an enterprise. They typically contain a master secret (master key) from which other secrets can be derived. This master secret cannot be extracted from the HSM. The Crypto Express Adapters can be configured in three different modes two of which (CCA and EP11) are HSM modes. Using Crypto Express in either CCA or EP11 modes allows to perform secure key crypto allows to perform crypto graphic operations without ever exposing plain text key material in the system memory. We show how to set up Linux on z to use either CCA or EP11 secure key cryptography, describe the components involved in a secure key solution to either manage the crypto adapter or to perform cryptographic operations. Last but not least, we give an outlook to using protected key cryptography in Linux.
The registration link is here.