|
|
|
CA Tape Encryption provides software implementations of the AES128, AES192, and AES256 algorithms. These algorithms are provided to insure that you can encrypt and decrypt tape files at a disaster recovery site where crypto-processors may not be available. The performance of these software-based algorithms is slower than the same algorithms implemented in hardware (CPACF) or in the IBM ICSF software implementations. For this reason, CA recommends selecting an algorithm supported by your cryptographic hardware. This gives you significant performance improvement.
CA Tape Encryption provides software implementations of the MD5, SHA-1, and SHA-256 hashing algorithms. These algorithms are provided so that you can run CA Tape Encryption at recovery sites where a hardware implementation of the algorithm may not be available.
The DES64, 3DES128, and 3DES192 algorithms are available in hardware on all systems with a CCF or CPACF processor installed. CA Tape Encryption does not have a software implementation of the DES64, 3DES128, and 3DES192 algorithms. Ensure that the algorithm is provided by CCF, CPACF, or ICSF at your disaster recovery site.
Note: Software versions of the AES and hashing algorithms are available on all systems.
The following list identifies when a hardware implementation of an algorithm is available:
The algorithms supported in hardware are the:
There are no algorithms supported in hardware.
The algorithms supported in hardware are the:
There are no algorithms supported in hardware.
The algorithms supported in hardware are the:
The algorithms supported in hardware are the:
Note: The RSA encryption algorithm is employed only when encrypting symmetric keys for B2B tapes.
| Copyright © 2011 CA. All rights reserved. | Tell Technical Publications how we can improve this information |