What does InfoSphere Guardium Data Encryption do?

InfoSphere® Guardium Data Encryption addresses the increased demand for data privacy and security.

InfoSphere Guardium Data Encryption performs encryption and decryption through the use of exit routines. The exit routine code uses the System z®, zSeries, and S/390® Crypto Hardware to encrypt data for storage and to decrypt data for application use. InfoSphere Guardium Data Encryption protects sensitive data that can reside on various storage media.

The exit routines can be DB2® edit procedures, field procedures, user-defined functions, or IMS™ Segment Edit/Compression exit routines.

Product features

• A single tool for your DB2 and IMS databases
• High performance and low overhead by using the cryptographic hardware available on the platform
• Compliance with privacy and security regulations
• Customization at the DB2 table level and at the IMS segment level
• Fast implementation, after a cryptographic key label has been defined by the security analyst, with the use of standard DB2 and IMS exit routines

Product benefits

• Ensures data privacy by encrypting and decrypting data
• Uses the following encryption algorithms:
  • Triple Data Encryption Algorithm (TDEA), also known as the Triple Data Encryption Standard (Triple DES)
  • ANSI Data Encryption Algorithm (DEA), also known as the Data Encryption Standard (DES)
  • Advanced Encryption Standard (AES)
• Requires no changes to your applications
• Conforms to the existing z/OS® and OS/390® security model
• Provides an ISPF front end to create and customize encryption exit routines
• Enables you to leverage the power of Storage Area Networks (SANs) safely while complying with privacy and security regulations