How IBM Security Key Lifecycle Manager for z/OS works

Integrates with encrypting storage devices

IBM Security Key Lifecycle Manager for z/OS integrates with encrypting storage devices with hardware encryption for performance, Resource Access Control Facility (RACF), Integrated Cryptographic Service Facility (ICSF) and IBM Enterprise Key Management Foundation (EKMF). It provides a simple upgrade for existing Encryption Key Manager (EKM) customers.

Simplifies encryption key management

The solution uses native z/OS functions for security and auditing to reduce administrative overhead. It integrates hardware and software encryption to reduce complexity.

Automates encryption key data backup and recovery

Automated encryption key data backup and recovery offer enhanced data availability and integrity.

Provides a centralized hub for encryption key management

The solution uses the availability, scale and performance of IBM System z to provide a centralized hub for encryption key management.

Improves security for key serving

The key material is only served to known and verified devices in a protected manner, resulting in improved security for key serving.

Technical details

Software requirements

Software requirements for IBM Security Key Lifecycle Manager for z/OS can be viewed at:

    Hardware requirements

    Hardware requirements for IBM Security Key Lifecycle Manager for z/OS can be viewed at:

      Technical specifications

      Supported Storage and Non-Storage devices for IBM Security Key Lifecycle Manager for z/OS can be viewed at:

        See a complete list of technical specifications