30335: How Does TLS Cipher Suite Selection Affect z/OS Performance
Project and Program:
Communications Server,
Service Delivery,
Network Security & Management
Tags:
Proceedings,
SHARE DC 2025,
2025
As a z/OS network security administrator you’ve been asked to increase the
security level of your TLS definitions. But when you switched your TLS_
RSA_WITH_AES_256_GCM_SHA384 cipher suite to TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,
your CPU consumption went through the roof! So what does it mean to move from
RSA key exchange to DHE? Or ECDHE? And what about ECDSA certificates vs. RSA?
Back to Proceedings File Library