I'm reviewing some of our set-up for the ICSF encryption processing. We do not have a TKE or the "use at your own risk" ISPF panels that IBM supplies. We currently create data keys via KGUP and let the ICSF generate the key, so no human has knowledge of the key parts.
Should something catastrophic occur, what's the best way to recover - must we move to entering key parts? I tested recovering a single key from the CKDS dataset using IDCAMS REPRO - and it seems to have worked. Any known concerns or suggestions? Thanks! ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
