Is the INSTDATA encrypted when being CPFed to another NODE?
Article ID: 100656
Updated On:
Products
Top Secret
Top Secret - LDAP
Issue/Introduction
When a new ID is created and is propagated via CPF - are the non-password portions of the command also encrypted as soon as the <enter> key is pressed?
We store special instructions in the INSTDATA field and need to know if this is transmitted from the sending system in an non-encrypted form.
We store special instructions in the INSTDATA field and need to know if this is transmitted from the sending system in an non-encrypted form.
Environment
Release:
Component: TSSMVS
Component: TSSMVS
Resolution
CPF encrypts sensitive fields of the command such as passwords or passphrases initially and then encrypts (masks) the whole command in the command buffer before it is written to the CPF recovery file and sent to the remote. Thus the entire command is encrypted within TSS via a proprietary algorithm before being sent.
Additionally, ENF/CCI can be configured to use SSL via the PROTOCOL of TCPSSLGW, which starts the CCISSLGW task. It would have to be configured with the appropriate SSL certificate, etc… to function with encryption which will allow for an additional layer of protection.
Additionally, ENF/CCI can be configured to use SSL via the PROTOCOL of TCPSSLGW, which starts the CCISSLGW task. It would have to be configured with the appropriate SSL certificate, etc… to function with encryption which will allow for an additional layer of protection.
Feedback
Yes
No
Powered by
