Digital Certificate Lifecycle Management on z/OS
Project and Program:
Enterprise Data Center,
Security and Compliance
Tags:
Proceedings,
2017,
SHARE San Jose 2017
This session will give you a basic understanding of what a certificate is, how it works based on the public key cryptography technology and leveraging PKI Services. We will discuss why there are different types certificates like SSL certificates, code signing certificates, EV (Extended Validation) certificates... and what differentiate them; how long should a certificate be renewed; how to decide if they need to be issued by a commercial certificate authority (CA), or issued internally. Digital certificate support on z/OS in different components like RACF, System SSL, LDAP, CICS, Communication Server, WAS, HTTP server. We will also introduce some common z/OS specific certificate details and you will hear from a user about the choices that can be made, and possible challenges faced and lessons learned during implementation and lifecycle management.-Greg Boyd-Mainframe Crypto; Paul Taukatch-IBM Corporation; Ross Cooper-IBM Corporation
Back to Proceedings File Library