R.S. wrote: <snip>
From the other hand why SHA-1, not something stronger? I guess IBM decided to use the most available algorithm in the z/OS. Even if you haven't set up ICSF.
It seemed perfectly adequate at the time, there was an available Java class for those who did not have ICSF set up as you noted, and we just never happened to change it. I don't recall when GIMZIP/UNZIP/GTPKG were introduced but it was certainly in or before z/OS V1.4 (perhaps with a PTF) because it was in place for z/OS V1.6 exploitation in ServerPac. And, for its actual purpose of data integrity checking, SHA-1 still seems perfectly adequate.
If you have a requirement for packages signed with strong algorithms, please open an RFE.
-- John Eells IBM Poughkeepsie [email protected] ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
