Encryption Parameter

Defining Security Protection Profiles in CA Top Secret › Select Data Sets for Encryption with CA Top Secret › Encryption Parameter

Encryption Parameter

After the CA@BES data set selection profiles have been defined, the CA Top Secret PERMIT command must be issued to associate the data set selection profile to the encryption parameter and define which ACID can use the selection profile. The actual encryption parameter values are defined within the 255 character APPLDATA keyword of the PERMIT. Consider the following rules when defining the encryption profile:

The APPLDATA field must include a valid CA Tape Encryption parameter, in the form of APPLDATA('BES=(string_value)') or APPLDATA('BESn=(string_value)').
The string_value is comprised of one of the following:
- a symmetric key name
- a code book name
- a digital certificate name
You can include additional text before or after the BES= or BESn= parameter. A blank must immediately precede the BES= or BESn= statement if either is not the leftmost text in the description field.
The description field can contain up to 120 alphanumeric and special characters. If you enter lowercase characters, they are converted to uppercase.
The data set selection profiles do not support the use of commas as command delimiters or embedded blanks. Use periods instead of these delimiters.

Tell Technical Publications how we can improve this information