You are currently on IBM Systems Media’s archival website. Click here to view our new website.

AIX > Administrator > Security

A Bankable Solution

AIX Cryptographic Services improves security while simplifying administration


Illustration courtesy of Shutterstock

You can start the GUI version of the tool by running the p11km command. The tool automatically loads all available PKCS 11 tokens. You can view details about these tokens and even load external PKCS 11 library modules supported on the AIX OS. Each tool supports running operations via a special batch-processing mode. This mode allows for batch files containing documented commands and parameters to be passed via the command line to perform the various tasks normally done manually within the GUI. You can start the batch-processing mode for the PKCS 11 key-management tool by running the following command: p11km -b < batch file >.

The PKCS 11 Administration tool is the centralized tool for managing security officer, performance tuning and cryptographic hardware assistance features on the AIX OS. This tool allows an administrator or security officer to manage the tokens AIX Cryptographic Services control. You can use this tool to manage PKCS 11 tokens and slots, reset user passwords, confirm object deletions, specify object trust, activate hardware assistance and tune performance.

You can start the GUI version of the tool by running the p11admin command. You can start the batch-processing mode for the PKCS 11 Administration tool by running the following command: p11admin -b < batch file >.

A Comprehensive Security Solution

IBM AIX Cryptographic Services provide a comprehensive solution for centralized key and trust management, cryptographic hardware exploitation and general PKCS 11 functionality. Software requiring secure storage, cryptographic services, or access to keys and trust should benefit from this powerful technology suite. This new architecture provides product simplification and increased security by leveraging centralized management and industry-standard access.

 

Chris Lita currently serves as lead cryptography engineer for the AIX Security Team. He is an expert software engineer, who has worked in a diverse set of technology areas within IBM.

Jason Jaramillo is a security software engineer for IBM AIX, specializing in Kerberos, OpenSSL, and Public Key Cryptography Standards 11.

Lucas McLane, CISSP, is an information assurance/software engineer for IBM AIX.

Ravi Shankar is an architect for AIX and PowerHA. He joined IBM 14 years ago and has specialized in wide set of technologies from reliability, availability and serviceability, to AIX security to business resiliency. With more than 19 years of experience in IT, he’s an expert in real-time systems, OS internals and overall system architecture.



Advertisement

Advertisement

2019 Solutions Edition

A Comprehensive Online Buyer's Guide to Solutions, Services and Education.

Hardening the Cloud

Security considerations to protect your organization

Verify System Integrity

AIX 6.1 and Trusted Execution help ensure secure systems

A Bankable Solution

AIX Cryptographic Services improves security while simplifying administration

IBM Systems Magazine Subscribe Box Read Now Link Subscribe Now Link iPad App Google Play Store
IBMi News Sign Up Today! Past News Letters