IBM PCI Cryptographic Coprocessor

Notice of withdrawal from marketing and discontinuance from support

IBM withdrew from marketing the IBM 4758 PCI Cryptographic Coprocessor, effective March 31, 2005, and discontinued support as of March 15, 2010.

NOTE: The information below is provided for historical reference only.

CCA support program

Features

Description

The CCA Support Programs provide a comprehensive, integrated family of services that employ the major capabilities of the IBM Coprocessors. Two versions are available:

CCA provides the usual DES and RSA functions for data confidentiality and data integrity support. In addition, CCA features extensive support for distributed key management and many functions of special interest to the finance industry. The latest level for xSeries and pSeries is 2.53 and for iSeries is 2.54 for Models 002 and 023. Other changes and extensions to the support program are described in the "Revision history" section of the CCA Basic Services Reference and Guide manual. The CCA software has been independently reviewed and certified by the German ZKA industry organization for use in specific finance systems. Also, IBM believes the CCA software can be operated compliant with the intent of the FIPS 140-1 cryptographic module standard. Capabilities include:

The master key can be randomly generated within the Coprocessor, or the master key can be inserted in parts by two or more trusted individuals.

The API for the Release 2.x CCA Support Program offered with the IBM 4758 Models 2 and 23 differs in certain details from the Release 1.31 support for IBM 4758 Models 1 and 13. API details for Release 2.x are quite similar to current CCA support on the S/390. Application programs designed to work with the CCA Support Program Release 1.31 may require modifications to run with Release 2.x. The DES internal key token and RSA key token data structures have changed in the version of the CCA Support Program for the Models 2 and 23. Other changes and extensions to the support program are described in the "Revision History" section of the CCA Basic Services Reference and Guide Release 2.41 for the IBM 4758 002/023. manual.

Performance demonstration program

A sample program is available that you can compile and run to obtain performance information for your system. This program may also serve as a starting point in your efforts to benchmark the CCA offerings for the IBM Coprocessor models. The program will operate with CCA Release 2.x installations on AIX and Windows NT systems.

IBM PCIe Cryptographic Coprocessor

License

LICENSE INFORMATION

The Programs listed below are licensed under the following terms and conditions in addition to those of the International License Agreement for Non-Warranted Programs Z125-5589-05.

Program Name: IBM CEX3C Common Cryptographic Architecture Support Program for Linux on System z version 4.2
Program Number: Tool

Source Components and Sample Materials

The Program may include some components in source code form ("Source Components") and other materials identified as Sample Materials. Licensee may copy and modify Source Components and Sample Materials for internal use only provided such use is within the limits of the license rights under this Agreement, provided however that Licensee may not alter or delete any copyright information or notices contained in the Source Components or Sample Materials. IBM provides the Source Components and Sample Materials without obligation of support and "AS IS", WITH NO WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTY OF TITLE, NON-INFRINGEMENT OR NON-INTERFERENCE AND THE IMPLIED WARRANTIES AND CONDITIONS OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.

L/N: L-RKIY-8RFMK5
D/N: L-RKIY-8RFMK5
P/N: L-RKIY-8RFMK5