|
|
|
B2B keys are generated for tapes intended for business partners. The purpose of a B2B key is to provide for secure encryption when sending tapes from one organization to another organization. The characteristics of a B2B key are different from those of an in-house key. B2B keys encrypted with digital certificates use both asymmetric and symmetric encryption. B2B keys encrypted with code books use symmetric encryption only. Both forms of B2B keys use a single-use symmetric key, which means that each encrypted tape file is encrypted with a different symmetric key.
To create a B2B tape based on digital certificates, CA Tape Encryption interfaces with the installed security product, which creates and manages digital certificates. Because these B2B tapes are transferred from one organization to another, they take advantage of public key encryption. This allows the sender to securely and transparently encrypt the tape and the receiver to securely and transparently decrypt the tape.
To create B2B tapes for business partners in a non-z/OS environment, who may not have a digital certificate infrastructure, use the code book method. This approach involves the use of a set of possible keys, known as a code book, to perform encryption and decryption. The publicly-known information only identifies how to use the book to create the proper key. This information is useless without the code book. For CA Tape Encryption the book itself is also encrypted with a user-specified passkey. This approach lets you securely communicate the keys because the encrypted data, the code book, and the passkey can be sent separately. By using different methods of delivery for each of these code components, you can limit the probability that all three decryption components would fall into unauthorized hands.
| Copyright © 2011 CA. All rights reserved. | Tell Technical Publications how we can improve this information |