The main purpose of the DBUTLTY ENCRYPT function is to facilitate the data encryption feature of CA Datacom/DB. The data encryption feature allows tables to store encrypted data. This table-level option is available in z/OS environments only. The method of doing encryption and decryption is called basic encryption. For details about using data encryption, see the CA Datacom/DB Database and System Administration Guide.
With encryption, every DBUTLTY function that accesses rows of a table from (or to) DASD in the DBUTLTY address space must be done with an authorized execution of DBUTLTY. The same is true for setting or changing any encryption function.
Running not authorized generates an error code ‘N’ during READRXX, DBUTLTY SPLIT, RECOVERY, or REPORT AREA=RXX. The LXX flag indicating encrypted data can only be reset by an INIT or RESET of the LXX.
Important: The error code ‘N’ just mentioned is for any read of an RXX, no matter whether a particular RXX contains encrypted data. Termination occurs before access to any RXX data. CA Datacom does not bring potentially encrypted data into memory for an unauthorized user to attack.
Note: For DBUTLTY External Security, ENCRYPT has a function of ENCRYPT with no sub function and no table rights.
|
Copyright © 2015 CA Technologies.
All rights reserved.
|
|