libzpc - A Protected-Key Cryptographic
Librarylibzpc offers APIs to exploit the high
performance of protected-key cryptography in the CPACF without the need to code assembler language. As
protected keys are volatile, libzpc provides a
mechanism to transform a protected key into a permanent secure key with the possibility to
automatically derive a new protected key whenever required.
PDF file About this document IBM Z® Protected-Key Cryptographic Library (libzpc ) is an open-source library targeting the 64-bit Linux on Z and LinuxONE platforms. The implementation of the provided APIs for cryptographic operations exploits the CP Assist for Cryptographic Functions (CPACF ) of an IBM Z system. Therefore, libzpc can provide the high-performance support of the IBM Z CPACF feature, combined with the use of protected keys, which ensures that key material is never present in main memory at any time.Summary of changes Concepts of IBM Z cryptographic hardware IBM Z systems offer different types of cryptographic hardware with different features to meet a customer's cryptographic requirements.Prerequisites for using libzpc libzpc APIs, learn about the tasks how to build, test, install, and configure libzpc .Programming with libzpc libzpc APIs in order to avoid errors.libzpc APIs libzpc . Also, you can view a sample program exploiting a selection of these APIs.