z/OS Cryptographic Services ICSF Administrator's Guide
Previous topic | Next topic | Contents | Index | Contact z/OS | Library | PDF


Import a public key from an X.509 certificate received from elsewhere

z/OS Cryptographic Services ICSF Administrator's Guide
SA22-7521-17

This service is used to build a public PKDS key record from an X.509 digital certificate sent to you by another party. Once complete, you may send the other party data enciphered under the public which the other party can recover.

  • The data set name supplied must contain the certificate
  • The certificate must be a single DER encoded certificate.
  • Base64 encoded certificates are not supported.
  • The data set containing the certificate must be physical sequential with RECFM(V B).
  • The data set can not be a PDS or PDS member.
  • Callable services:
    • CSNDPKB - builds the public key token
    • CSNDKRC - creates the PKDS record
Note:
No signature check is performed on the certificate.

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014