This page provides product support information for customers of IBM’s PCIe hardware security module (HSM) Cryptographic Coprocessor Version 2 (PCIeCC2). The PCIeCC2 is a replacement for the IBM PCIe Cryptographic Coprocessor Version 1 (PCIeCC).
The PCIeCC2 is available on x86 servers as an IBM Z® machine type-model 4767-002 (4767).
The PCIeCC2 is also available on IBM Z mainframes (currently only z14®, z13s™, and z13®) as crypto feature Crypto Express5S (CEX5S), feature code (FC) 0890. Note that FC 0890 requires FC 3863 - CPACF Enablement (Central Processor Assist for Cryptographic Functions). CPACF is a set of cryptographic instructions providing improved performance through hardware acceleration. Using the cryptographic hardware, you gain security from using the CPACF and the Crypto feature through in-kernel cryptography APIs and, for Linux® on z Systems®, the libica cryptographic functions library.
On IBM POWER8® systems, the PCIeCC2 is available as FC EJ32, Customer Card Identification Number 4767 (without blind-swap cassette custom carrier) and as FC EJ33, Customer Card Identification Number 4767 (with blind-swap cassette custom carrier), either on IBM AIX®, IBM i®, or PowerLinux® (Red Hat® Enterprise Linux (RHEL), SUSE® (a Micro Focus Company) Linux Enterprise Server (SLES), or Ubuntu®) operating systems.
The following sections list many topics related to the PCIeCC2 and provides a link for each topic to a page or downloadable PDF that provides information on that topic. The topics are group by hardware, software, and information of a general nature.