I really didn't want this to turn into an argument over whether this is necessary. Sarbanes Oxley, PCI, and other government regulations say it's necessary to comply, so anyone needing to comply with a whole host of these regs has the need to encrypt data at rest. Now... you don't need DASD that has encryption built-in to do it, of course.
In fact, you could purchase MegaCryption from ASPG, Inc. and use it very nicely *and* get the additional benefits of being able to use it for B2B exchange of encrypted data, as well as to easily encrypt DSS and/or CA-DISK backups; all taking advantage of ICSF and/or CPACF hardware when it makes sense to do so. ;-) Sorry... I couldn't resist. Scott T. Harder Tech Support & Product Development ASPG, Inc. Ph: 239-649-1548 / Ext. 203 Fax: 239-649-6391 General Support Email: [email protected] -----Original Message----- From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf Of Hal Merritt Sent: Tuesday, February 10, 2009 2:05 PM To: [email protected] Subject: Re: Crypto-DASD? I been reading about such, but only in a PC context. IMNSHO, DASD encryption does not add any real security value. Every record of every file is in a unpublished, often proprietary format. The data is then compressed and written in yet another proprietary format over several physical devices. Encrypted data would defeat most all compression algorithms, increasing raw storage requirements substantially. That's serious dollars to mitigate a near nonexistent threat. Encryption is being pushed by auditors in response to sensitive data on PC hard drives. -----Original Message----- From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf Of Scott T. Harder Sent: Tuesday, February 10, 2009 11:23 AM To: [email protected] Subject: Crypto-DASD? Just curious if anyone has heard anything about new DASD coming out any time soon (or not so soon) that will have encryption built in, where anything written to a volume on a unit supporting this would automatically get encrypted; and decrypted when read, of course. Thanks! Scott Scott T. Harder Tech Support & Product Development ASPG, Inc. Ph: 239-649-1548 / Ext. 203 Fax: 239-649-6391 General Support Email: [email protected] ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html NOTICE: This electronic mail message and any files transmitted with it are intended exclusively for the individual or entity to which it is addressed. The message, together with any attachment, may contain confidential and/or privileged information. Any unauthorized review, use, printing, saving, copying, disclosure or distribution is strictly prohibited. If you have received this message in error, please immediately advise the sender by reply email and delete all copies. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
