Selecting Tape Files for Encryption Using DFSMS › How Header Labels Work to Manage Tapes › Labels for Business-to-Business Tapes Using Digital Certificates

Labels for Business-to-Business Tapes Using Digital Certificates

Information about B2B tapes that use digital certificates is written to standard user header labels, and includes the following:

• The key label, written in clear text, that references the digital certificate of the business partner
• The randomly-generated symmetric key for each encrypted file:
  • This key is encrypted using the public key of the business partner, resulting in an encrypted key that is between 64 and 256 bytes in length.
  • This encrypted key is stored on the tape in User Header Labels 1-8.
  • The UHLs are stored after the HDR1-HDR2 for each encrypted tape file on the cartridge.
  • The UTLs are stored at the end of every encrypted tape file on the volume.