Excuse Me, Do I Know You? Certificate Authentication in the Internet Key Exchange
Project and Program:
Enterprise Data Center,
Security and Compliance
Tags:
Proceedings,
SHARE in Anaheim 2011,
2011
Network security requirements increasingly call for stronger authentication methods, among which digital certificates have become the de facto standard. In z/OS, the Network Security Services Daemon (NSSD) provides powerful centralized certificate management for the Internet Key Exchange Daemon (IKED). In addition, NSSD is required to leverage advanced digital signature functions used by IKE version 2, including Certificate Revocation Lists, Elliptical Curve DSA, and Trust Chains. This session will outline the configuration requirements for implementing a certificate management solution which uses NSSD as the central certificate repository.
Presenter(s): Lin Overby, IBM Corporation
Back to Proceedings File Library