Specifying multiple RSA keys

You can specify multiple RSA control statements. Each control statement identifies the label of one RSA public key in the ICSF PKDS. CSDFILEN supports up to 16 public key labels.

For each RSA public key, Encryption Services creates an identifier that is to be associated with the key. The RSA identifier allows CSDFILDE to associate an RSA private key with the correct RSA key information in the header record of the encrypted output file. To decrypt the file that uses the RSA option, you must specify the RSA= control statement with the label of the RSA private key on CSDFILDE or specify the -keyStoreCertificateAlias parameter for the RSA private key on the Java-based Client of Encryption Facility for z/OS Client. CSDFILDE supports only one RSA= control statement. The statistics report file for CSDFILEN includes any RSA= control statements that you specify as input.

Parent topic: User guidelines and samples for encrypting data