IBM Data Encryption for IMS and DB2 Databases

IBM Data Encryption for IMS and DB2 Databases addresses the increased demand for data privacy and security.

IBM Data Encryption for IMS and DB2 Databases runs as an exit to encrypt data for storage and decrypt data for application use, thereby protecting sensitive data residing on various storage media. Without this product, you need to write and maintain your own encryption software to use with such exits or within your applications.

IBM Data Encryption for IMS and DB2 Databases is implemented by using the IMS Segment Edit/Compression exit and the DB2 EDITPROC exit.

IBM Data Encryption for IMS and DB2 Databases features:

• A single tool for both your IMS and DB2 databases.

• Compliance with privacy and security regulations.

• Customization at the: 1) IMS segment level 2) DB2 table level
  Fast implementation (after an encryption key label has been defined by the security analyst) through the use of standard IMS and DB2 exits invoked during database reload.

• Provides exit drivers to permit the execution of compression and encryption at the same exit point via a driver exit, to avoid negating any existing compression capability features. The compression exit code invokes zSeries® Crypto Hardware and features which ensures high performance and low overhead.

IBM Data Encryption for IMS and DB2 Databases benefits:

• Ensures data privacy by encrypting and decrypting data.

• Uses the ANSI Data Encryption Algorithm (DEA), which is also known as the U.S. National Institute of Science and Technology (NIST) Data Encryption Standard (DES) and Advanced Encryption Standard (AES) algorithms.

• Requires no changes to your applications.

• Conforms to the existing z/OS security model.

• Provides an ISPF front end to create and customize encryption, external compression and driver exits.

• Enables you to leverage the power of Storage Area Networks (SANs) safely while complying with privacy and security regulations that are in place or that are being enacted worldwide.