The IBM® Tivoli® Storage Manager API
for Version 7.1.1 contains
many new features and changes.
- AES 256-bit encryption added as an available encryption type in
the backup-archive client and the API
- AES 256-bit encryption has been added as an available encryption
type in the backup-archive client and the API. The encryptiontype option
is used in the backup-archive client to specify the algorithm for
data encryption. This is used to encrypt data that is sent to the Tivoli Storage
Manager server.
AES 256 encryption will be used as a more secure algorithm for data
encryption, which can be used to encrypt data that you back up, archive,
restore, or retrieve. For additional information, see API encryption.
- Added option to disable security protocols that are lower than
TLS 1.2
- In order to comply with new US federal requirements for new cryptographic
standards, the ability to restrict SSL protocols to TLS 1.2 or above
is available. If you want to disable security protocols that are lower
than TLS 1.2, add the ssldisablelegacytls yes option
to the client options file or select Require TLS 1.2 or
above on the Communications tab
in the backup-archive client preferences editor. Selecting this check
box can prevent spoofing attacks by malicious programs that accept
lower-level protocol connections even if the Tivoli Storage Manager server does not.