z/OS Open Cryptographic Services Facility Application Programming
Previous topic |
Next topic
|
Contents
|
Contact z/OS
|
Library
|
PDF
Contents (exploded view)
z/OS Open Cryptographic Services Facility Application Programming
SC14-7513-00
Open Cryptographic Services Facility Application Programming
z/OS Open Cryptographic Services Facility Application Programming
Configuring and Getting Started
Setting Up the Necessary Security Authorizations
Security Administration
RACF FACILITY Class Profiles Required by OCSF
Program Control
Program Control in RACF
HFS Program Control
APF Authorization
OSCF User Identities and Permissions
Granting Permission to Use OCSF Service
Using Groups
Refreshing z/OS Security Server Data
Running the Installation Script
Running the Installation Verification Procedure
Common Problems
Open Cryptographic Services Facility Framework
Module Management
Installing and Uninstalling Service Provider Modules
Listing Service Provider Modules and Services
Attaching and Detaching Service Provider Modules
Managing Calls Between Service Provider Modules
Memory Management
Security Context Management
OCSF Security Context Changes
Integrity Verification Services
OCSF Policy Modules
Usage of OCSF Policy Modules
OCSF Behavior When Only the OCSF Base is Installed
OCSF Behavior When the OCSF Security Level 3 Feature is Installed
Implementation of OCSF Policy Modules
Cryptographic Module Manager
Supporting Legacy CSPs
Cryptography Services API
Dependencies with the Policy Modules
Trust Policy Module Manager
Trust Policy API
Certificate Library Module Manager
Certificate Library Services API
Data Storage Library Module Manager
Data Storage Library Services API
Service Provider Modules
Cryptographic Service Provider Modules
Trust Policy Modules
Certificate Library Modules
Data Storage Library Module
OCSF Service Provider Modules
IBM Software Cryptographic Service Provider, Version 1.0
IBM Weak Software Cryptographic Service Provider, Version 1.0
IBM Software Cryptographic Service Provider 2, Version 1.0
IBM Weak Software Cryptographic Service Provider 2, Version 1.0
IBM CCA Cryptographic Module Version 1.0
IBM Standard Trust Policy Library, Version 1.0
IBM Extended Trust Policy Library, Version 1.0
IBM Certificate Library, Version 1.0
IBM Data Library, Version 1.0
IBM LDAP Data Library, Version 1.0
Developing Security Applications
Writing OCSF Applications
CSSM_Init
Memory Management
Finding and Listing Service Providers
Getting Service Provider Information
Attaching a Service Provider
Using Service Provider Functions
Service Context Management
Multi-threaded Applications
Error Management
Building OCSF Applications
Include Files for OCSF Services
OCSF Libraries
Running OCSF Applications
File_encrypt Sample Application
OCSF API Calls
Diffie-Hellman Key Exchange Scenario
File_encrypt Structure
File_encrypt Source Code
FILE_ENCRYPT.H
MAIN.C
INITIALIZE.C
ATTACH.C
ENCRYPT.C
MAKEFILE.OS390
Core Services API
Module Management Services
Memory Management Support
Security Context Management
Integrity Verification Services
Data Structures for Core Services
Basic Data Types
CSSM_ALL_SUBSERVICES
CSSM_API_MEMORY_FUNCS_PTR
CSSM_BOOL
CSSM_COUNTRY_ORIGIN
CSSM_CRYPTO_TYPE
CSSM_CSP_MANIFEST
CSSM_CSSMINFO
CSSM_DATA
CSSM_EVENT_TYPE
CSSM_GUID
CSSM_HANDLE
CSSM_INFO_LEVEL
CSSM_LIST
CSSM_LIST_ITEM
CSSM_MODULE_FLAGS
CSSM_MODULE_HANDLE
CSSM_MODULE_INFO
CSSM_NOTIFY_CALLBACK
CSSM_RETURN
CSSM_SERVICE_FLAGS
CSSM_SERVICE_INFO
CSSM_SERVICE_MASK
CSSM_USER_AUTHENTICATION
CSSM_USER_AUTHENTICATION_MECHANISM
CSSM_VERSION
APIs for Core Services
CSSM_FreeInfo
CSSM_GetInfo
CSSM_Init
Module Management Functions
CSSM_FreeModuleInfo
CSSM_GetCSSMRegistryPath
CSSM_GetGUIDUsage
CSSM_GetHandleUsage
CSSM_GetModuleGUIDFromHandle
CSSM_GetModuleInfo
CSSM_GetModuleLocation
CSSM_ListModules
CSSM_ModuleAttach
CSSM_ModuleDetach
Utility Functions
CSSM_FreeList
CSSM_GetAPIMemoryFunctions
OCSF Privilege Mechanism
Data Structures
CSSM_EXEMPTION_MASK
Operations
CSSM_CheckCssmExemption
CSSM_QueryModulePrivilege
CSSM_RequestCssmExemption
Cryptographic Services API
Data Structures
CSSM_CALLBACK
CSSM_CC_HANDLE
CSSM_CONTEXT
CSSM_CONTEXT_ATTRIBUTE
CSSM_CONTEXT_INFO
CSSM_CRYPTO_DATA
CSSM_CSP_CAPABILITY
CSSM_CSP_FLAGS
CSSM_CSP_HANDLE
CSSM_CSP_SESSION_TYPE
CSSM_CSPSUBSERVICE
CSSM_CSPTYPE
CSSM_CSP_WRAPPEDPRODUCTINFO
CSSM_DATA
CSSM_DATE
CSSM_HARDWARERECSPSUBSERVICEINFO
CSSM_HEADERVISION
CSSM_KEY
CSSM_KEYHEADER
CSSM_KEY_SIZE
CSSM_KEY_TYPE
CSSM_NOTIFY_CALLBACK
CSSM_PADDING
CSSM_QUERY_SIZE_DATA
CSSM_RANGE
CSSM_SOFTWARECSPSUBSERVICEINFO
Cryptographic Context Operations
CSSM_CSP_CreateAsymmetricContext
CSSM_CSP_CreateDeriveKeyContext
CSSM_CSP_CreateDigestContext
CSSM_CSP_CreateKeyGenContext
CSSM_CSP_CreateMacContext
CSSM_CSP_CreatePassThroughContext
CSSM_CSP_CreateRandomGenContext
CSSM_CSP_CreateSignatureContext
CSSM_CSP_CreateSymmetricContext
CSSM_DeleteContext
CSSM_FreeContext
CSSM_GetContext
CSSM_GetContextAttribute
CSSM_UpdateContextAttribute
Cryptographic Sessions and Login
CSSM_CSP_ChangeLoginPassword
CSSM_CSP_Login
CSSM_CSP_Logout
Cryptrographic Operations
CSSM_DecryptData
CSSM_DecryptDataFinal
CSSM_DecryptDataInit
CSSM_DecryptDataUpdate
CSSM_DeriveKey
CSSM_DigestData
CSSM_DigestDataClone
CSSM_DigestDataFinal
CSSM_DigestDataInit
CSSM_DigestDataUpdate
CSSM_EncryptData
CSSM_EncryptDataFinal
CSSM_EncryptDataInit
CSSM_EncryptDataUpdate
CSSM_GenerateAlgorithmParams
CSSM_GenerateKey
CSSM_GenerateKeyPair
CSSM_GenerateMac
CSSM_GenerateMacFinal
CSSM_GenerateMacInit
CSSM_GenerateMacUpdate
CSSM_GenerateRandom
CSSM_QueryKeySizeInBits
CSSM_QuerySize
CSSM_SignData
CSSM_SignDataFinal
CSSM_SignDataInit
CSSM_SignDataUpdate
CSSM_UnwrapKey
CSSM_VerifyData
CSSM_VerifyDataFinal
CSSM_VerifyDataInit
CSSM_VerifyDataUpdate
CSSM_VerifyMac
CSSM_VerifyMacFinal
CSSM_VerifyMacInit
CSSM_VerifyMacUpdate
CSSM_WrapKey
Extensibility Functions
CSSM_CSP_PassThrough
Key Recovery Services API
Data Structures
CSSM_CERTGROUP
CSSM_CONTEXT_ATTRIBUTE Extensions
CSSM_KR_LIST_ITEM
CSSM_KR_NAME
CSSM_KR_PROFILE
CSSM_KRSP_HANDLE
CSSM_KRSPSUBSERVICE
CSSM_KR_WRAPPEDPRODUCTINFO
CSSM_POLICY_INFO
Key Recovery Module Management Operations
CSSM_KR_SetEnterpriseRecoveryPolicy
Key Recovery Context Operations
CSSM_KR_CreateRecoveryEnablementContext
CSSM_KR_CreateRecoveryRegistrationContext
CSSM_KR_CreateRecoveryRequestContext
CSSM_KR_GetPolicyInfo
Key Recovery Registration Operations
CSSM_KR_RegistrationRequest
CSSM_KR_RegistrationRetrieve
Key Recovery Enablement Operations
CSSM_KR_GenerateRecoveryFields
CSSM_KR_ProcessRecoveryFields
Key Recovery Request Operations
CSSM_KR_GetRecoveredObject
CSSM_KR_RecoveryRequest
CSSM_KR_RecoveryRequestAbort
CSSM_KR_RecoveryRetrieve
CSSM_KR_QueryPolicyInfo
Trust Policy Services API
Data Structures
CSSM_REVOKE_REASON
CSSM_TP_ACTION
CSSM_TP_HANDLE
CSSM_TP_STOP_ON
CSSM_TPSUBSERVICE
CSSM_TP_WRAPPEDPRODUCTINFO
Trust Policy Operations
CSSM_TP_ApplyCrlToDb
CSSM_TP_CertRevoke
CSSM_TP_CertSign
CSSM_TP_CrlSign
CSSM_TP_CrlVerify
Group Functions
CSSM_TP_CertGoupConstruct
CSSM_TP_CertGroupPrune
CSSM_TP_CertGroupVerify
Extensibility Functions
CSSM_TP_PassThrough
Certificate Library Services API
Data Structures
CSSM_CA_SERVICES
CSSM_CERT_ENCODING
CSSM_CERTGROUP
CSSM_CERT_TYPE
CSSM_CL_CA_CERT_CLASSINFO
CSSM_CL_CA_PRODUCTINFO
CSSM_CL_ENCODER_PRODUCTINFO
CSSM_CL_HANDLE
CSSM_CLSUBSERVICE
CSSM_CL_WRAPPEDPRODUCTINFO
CSSM_FIELD
CSSM_OID
Certificate Operations
CSSM_CL_CertAbortQuery
CSSM_CL_CertCreateTemplate
CSSM_CL_CertDescribeFormat
CSSM_CL_CertExport
CSSM_CL_CertGetAllFields
CSSM_CL_CertGetFirstFieldValue
CSSM_CL_CertGetKeyInfo
CSSM_CL_CertGetNextFieldValue
CSSM_CL_CertImport
CSSM_CL_CertSign
CSSM_CL_CertVerify
Certificate Revocation List Operations
CSSM_CL_CRLAbortQuery
CSSM_CL_CrlAddCert
CSSM_CL_CrlCreateTemplate
CSSM_CL_CrlDescribeFormat
CSSM_CL_CrlGetFirstFieldValue
CSSM_CL_CrlGetNextFieldValue
CSSM_CL_CrlRemoveCert
CSSM_CL_CrlSetFields
CSSM_CL_CrlSign
CSSM_CL_CrlVerify
CSSM_CL_IsCertInCrl
Extensibility Functions
CSSM_CL_PassThrough
Data Storage Library Services API
Data Structures
CSSM_DB_ACCESS_TYPE
CSSM_DB_ATTRIBUTE_DATA
CSSM_DB_ATTRIBUTE_INFO
CSSM_DB_ATTRIBUTE_NAME_FORMAT
CSSM_DB_CERTRECORD_SEMANTICS
CSSM_DB_CONJUNCTIVE
CSSM_DB_HANDLE
CSSM_DB_INDEXED_DATA_LOCATION
CSSM_DB_INDEX_INFO
CSSM_DB_INDEX_TYPE
CSSM_DBINFO
CSSM_DB_OPERATOR
CSSM_DB_PARSING_MODULE_INFO
CSSM_DB_RECORD_ATTRIBUTE_DATA
CSSM_DB_RECORD_ATTRIBUTE_INFO
CSSM_DB_RECORD_INDEX_INFO
CSSM_DB_RECORD_PARSING_FNTABLE
CSSM_DB_RECORDTYPE
CSSM_DB_UNIQUE_RECORD
CSSM_DL_DB_HANDLE
CSSM_DL_DB_LIST
CSSM_CUSTOM_ATTRIBUTES
CSSM_DL_FFS_ATTRIBUTES
CSSM_DL_HANDLE
CSSM_DL_LDAP_ATTRIBUTES
CSSM_DL_ODBC_ATTRIBUTES
CSSM_DL_PKCS11_ATTRIBUTES
CSSM_DLSUBSERVICE
CSSM_DLTYPE
CSSM_DL_WRAPPEDPRODUCTINFO
CSSM_NAME_LIST
CSSM_QUERY
CSSM_QUERY_LIMITS
CSSM_SELECTION_PREDICATE
Data Storage Functions
CSSM_DL_Authenticate
CSSM_DL_DbClose
CSSM_DL_DbCreate
CSSM_DL_DbDelete
CSSM_DL_DbExport
CSSM_DL_DbGetRecordParsingFunctions
CSSM_DL_DbImport
CSSM_DL_DbOpen
CSSM_DL_DbSetRecordParsingFunctions
CSSM_DL_GetDbNameFromHandle
Data Record Operations
CSSM_DL_AbortQuery
CSSM_DL_DataDelete
CSSM_DL_DataGetFirst
CSSM_DL_DataGetNext
CSSM_DL_DataInsert
CSSM_DL_FreeUniqueRecord
Extensibility Functions
CSSM_DL_PassThrough
OCSF Error Handling
Data Structures
CSSM_BOOL
CSSM_ERROR
CSSM_RETURN
Error Handling Functions
CSSM_ClearError
CSSM_CompareGuids
CSSM_GetError
CSSM_SetError
Application Memory Functions
CSSM_MEMORY_FUNCS and CSSM_API_MEMORY_FUNCS
Initialization of Memory Structure
CSSM_Memory_FUNCS Example
OCSF Errors
Cryptographic Service Provider Module Errors
Mapping OCSF Error Codes to ICSF Error Codes
IBM Software CSP and IBM Weak Software CSP Errors
Certificate Library Module Errors
Data Storage Library Module Errors
LDAP Data Library Module Errors
Trust Policy Module Errors
Key Recovery Module Errors
OCSF Framework Errors
Index
Copyright IBM Corporation 1990, 2014