Service Provider Modules

All cryptographic and key recovery functions, as well as the Trust Policies (TPs), certificates, and data store functions are performed by service provider modules. The OCSF Framework itself only manages the interactions between service provider modules and applications that use them. The OCSF Architecture supports these types of service providers.

• Cryptographic Service Providers
• Trust Policy Modules
• Certificate Library Modules
• Data Storage Library Modules.

Service Provider Modules presents a brief overview of each type of service provider module. For a detailed discussion of the OCSF interface the service providers must support refer to the z/OS Open Cryptographic Services Facility Service Provider Module Developer's Guide and Reference. Independent Software Vendors (ISVs) who develop modules for use with OCSF must support the interface specifications described. The modules may implement all or a subset of these application programming interfaces (APIs). A single module may also provide services in multiple categories of service. These are called multiservice modules. Several service provider modules are provided with the OCSF. These modules are described in OCSF Service Provider Modules.