Hi Eric, I think the main reason would be to comply with govt. regulations that say "thow must encrypteth data at rest that contains personal/private information". Credit card numbers, medical records... the usual stuff.
Now it won't help B2B exchange; only situations where a company is required to encrypt data where it lives. It will automatically be encrypted and decrypted; I imagine via a symmetric key stored in the hardware. It could be good, also, for DR situations where data is mirrored to DASD at the DR site. Not sure why there, because nobody seems worried about data mirrored to offsite disk, where they are very worried about tape during transport. But, again, if the requirement is that the data at rest be encrypted, then that requirement - I would think - would extend to DR sites, as well. I asked the original question only because I had heard that crypto-DASD was coming next (after the tape hardware encryption, which is obviously already in the field). I haven't been able to find any information on the crypto-DASD topic, so I just thought I'd see what the list had heard. Just fishing. Thanks! Scott Scott T. Harder Tech Support & Product Development ASPG, Inc. Ph: 239-649-1548 / Ext. 203 Fax: 239-649-6391 General Support Email: [email protected] -----Original Message----- From: [email protected] [mailto:[email protected]] Sent: Tuesday, February 10, 2009 12:58 PM To: IBM Mainframe Discussion List Cc: Scott T. Harder Subject: Re: Crypto-DASD? I haven't heard anything about this new dasd, but I have a question. Why would you want everything encrypted? If you have a dasd box in your datacenter, what is the reason to encrypt all your data? I can see that maybe for mirroring where the data gets sent long distances over communication lines, but why would the average datacenter need this? Eric -- Eric Bielefeld Systems Programmer Washington University St Louis, Missouri 314-935-3418 ---- "Scott T. Harder" <[email protected]> wrote: > Just curious if anyone has heard anything about new DASD coming out any > time soon (or not so soon) that will have encryption built in, where > anything written to a volume on a unit supporting this would > automatically get encrypted; and decrypted when read, of course. > > > > Thanks! > > Scott > > > > Scott T. Harder > > Tech Support & Product Development > > ASPG, Inc. > > Ph: 239-649-1548 / Ext. 203 > > Fax: 239-649-6391 > > General Support Email: [email protected] > > > > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: GET IBM-MAIN INFO > Search the archives at http://bama.ua.edu/archives/ibm-main.html ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
