Enabling the IBM JCE Hybrid Provider for Liberty
The IBM® JCE Hybrid Provider
(IBMJCEHYBRID
) is for applications that use cryptographic hardware and processors
when they are available, but can continue without those cryptographic features when they are not
available. Using the IBMJCEHYBRID
provider enables an application that runs on z/OS
to take advantage of JCE providers without having to include complex error handling for when
cryptographic features are not available.
Before you begin
Ensure that the IBMJDK running on z/OS® is at Java™ 7 SR3 or later.
About this task
The IBMJCEHYBRID
provider does not do any cryptographic operations, but routes
requests to JCE providers registered with the Java Security
Framework. The IBMJCEHYBRID
provider must be the first JCE provider in the active
JVM provider list, which is initialized from the java.security
provider list. The
IBMJCEHYBRID
provider routes requests to, and provides failover for, JCE providers
according to the security provider registrations done at JVM initialization. This function enables
an application to take advantage of cryptographic features when they are available and to use a
provider that does not depend on these features when they are not available.