Encrypt Only Control Block Information—No Data Being Sent

This example involves overriding default settings in the Connect:Direct® Secure Plus parameter files used to establish a connection between two business partners. The business partners agreed by default all sessions are secure and that everything should be encrypted, that is, both the information sent during the handshake to set up communication sessions and the actual files being transferred.

Both partners specified the following configuration in their Connect:Direct Secure Plus parameter files:

  • Specified ENCRYPT=Y in both the Local and Remote Node records
  • Specified OVERRIDE=Y in both the Local and Remote Node records

To avoid going through the expense of encrypting and decrypting data being transferred, the business partners use the following PROCESS statement when transferring a particular file:

ENCNO PROCESS SNODE=OTHERBP SECURE=ENCRYPT.DATA=N

In this scenario, both business partners are more concerned with increasing throughput and using less CPU while protecting the information being exchanged to establish the session.

Note: Both sides must have support for ENCRYPT.DATA=N or the Process fails.