Page 1 of 1
ICSF. Secret key, DATA, Domain parameters.
Posted:
Wed Nov 09, 2011 1:48 pmby Lesya
Could you explain me: When and how objects of token such as Secret key, DATA and Domain parameters are created?
Re: ICSF. Secret key, DATA, Domain parameters.
Posted:
Wed Nov 09, 2011 2:33 pmby BillyBoyo
Through training, consulting the documentation, colleagues, support people.
If you don't know how to encrypt you shouldn't be doing it. If you should be doing it, you need to know how.
If it is just the thirst for knowledge, you could google. I tried ICSF Mainframe and got some stuff.
Re: ICSF. Secret key, DATA, Domain parameters.
Posted:
Wed Nov 09, 2011 4:25 pmby Lesya
Thanks for your advice. But all information from google didn't help me.
I can't understand when there are these objects. Maybe when you add a token, these objects should be created automatically.
Maybe someone has already worked with ICSF and can help me.
Re: ICSF. Secret key, DATA, Domain parameters.
Posted:
Wed Nov 09, 2011 5:36 pmby BillyBoyo
Somehow I got to z/OS V1R10.0 ICSF Application Programmer's Guide in PDF format. Very quickly. Its probably there on the "bookshelf" as well. From IBM. There is some more technical stuff also readily available.
If you can't get your answers from what is available, tell us what you are trying to do, at least.
Re: ICSF. Secret key, DATA, Domain parameters.
Posted:
Wed Nov 09, 2011 5:58 pmby enrico-sorichetti
it does not seem overly difficult to ...
start from
http://www-03.ibm.com/systems/z/os/zos/ ... index.htmlchoose the zOS level You are using
z/OS documentation by release:
1.13 | 1.12 | 1.11 | 1.10 | 1.9 | 1.8 | 1.7 | 1.6 | 1.5 | 1.4 | 1.3 | 1.2 |
1.10 for example
to arrive
http://www-03.ibm.com/systems/z/os/zos/ ... books.htmland click on
List all z/OS V1R10.0 elements and features bookshelves
to arrive
http://www-03.ibm.com/systems/z/os/zos/ ... ves10.htmland click on the search titles box under
z/OS V1R10.0 elements and features - 388 books
List books | Download shelf | Download shelf index
to arrive
http://publibz.boulder.ibm.com/cgi-bin/ ... rch+titleswhere You type ICSF and click on the find button
to arrive
http://publibz.boulder.ibm.com/cgi-bin/ ... UBMIT=Findz/OS V1R10.0 Cryptographic Services ICSF Administrator's Guide - HCR7751 CSFB3Z90 11/13/08 10:44:51 SA22-7521-13
z/OS V1R10.0 Cryptographic Services ICSF Application Programmer's Guide - HCR7751 CSFB4Z90 11/12/08 14:53:32 SA22-7522-12
z/OS V1R10.0 Cryptographic Services ICSF Messages - HCR7751 CSFB7Z90 11/13/08 13:50:50 SA22-7523-12
z/OS V1R10.0 Cryptographic Services ICSF Overview - HCR7751 CSFB5Z90 11/13/08 10:24:59 SA22-7519-12
z/OS V1R10.0 Cryptographic Services ICSF System Programmer's Guide - HCR7751 CSFB2Z90 11/13/08 13:36:48 SA22-7520-13
z/OS V1R10.0 Cryptographic Services ICSF TKE PCIX Workstation User's Guide (check Resource Link for a more current copy of this publication)
z/OS V1R9.0-V1R10.0 Cryptographic Services ICSF Writing PKCS #11 Applications
it is unbelievable that people trying to deal with advanced topics as cryptography lack the basic skill/competence of searching for the relevant documentation 
another place to search would be the IBM REDBOOKS site
Re: ICSF. Secret key, DATA, Domain parameters.
Posted:
Wed Nov 09, 2011 7:38 pmby Lesya
I have read that ICSF supports PKCS #11 session objects and token objects. The following classes of objects can be associated with these object types:
Certificate, Public key, Private key, Secret key, Data objects and Domain parameters.
I know that if we bind certificate to token Certificate, Public key and Private key objects will be created in token.
I can't find information about others objects. When are created?