libzpc - A Protected-Key Cryptographic Librarylibzpc offers APIs to exploit the high performance of protected-key cryptography in the CPACF without the need to code assembler language. As protected keys are volatile, libzpc provides a mechanism to keep a protected key's effective key as a permanent secure key with the possibility to automatically derive a new protected key whenever required.
PDF file About this document IBM Z® Protected-Key Cryptographic Library (libzpc ) is an open-source library targeting the 64-bit Linux on IBM Z and IBM LinuxONE platforms. The implementation of the provided APIs for cryptographic operations exploits the CP Assist for Cryptographic Functions (CPACF ) of IBM Z® and LinuxONE systems.libzpc can provide the high-performance support of the CPACF feature, combined with the use of protected keys, which ensures that key material is never present in main memory at any time.Summary of changes Concepts of IBM Z cryptographic hardware IBM Z® systems offer different types of cryptographic hardware with different features to meet a customer's cryptographic requirements.Preparing libzpc for use libzpc is to obtain and install the libzpc package from your distribution provider.Programming with libzpc libzpc APIs in order to avoid errors.libzpc APIs libzpc . Also, you can view sample programs for AES and ECC exploiting a selection of these APIs.