SecureZIP for z/OS

Leverage your investment in IBM Cryptographic Services Facility to protect sensitive data in significantly shorter elapsed times, while ensuring cross-platform portability provided by the ZIP standard.

Significantly reduce the time needed to write files to and extract files from tape media. Files are written directly to tape media, bypassing the need to stage them to disk first.

Create ZIP archives that are protected with strong 3DES or AES encryption using RSA BSAFE®, or by leveraging SecureZIP's integration with IBM hardware or software encryption. SecureZIP archives created on the mainframe can be decrypted by other operating systems, enabling full cross-platform interoperability. Additionally, SecureZIP's RSA BSAFE® encryption has been thoroughly tested and is proven to have the technical integrity required to meet regulatory requirements and current standards such as FIPS 197, the Advanced Encryption Standard (AES) specification.

All products in the SecureZIP line enable encryption using passphrases.

SecureZIP archives are portable file containers suitable for major enterprise operating systems - from end-user desktops to IBM mainframes. SecureZIP cross-platform file transfer is pain-free, enabling persistent security throughout the entire organization.

Improperly used encryption can effectively lock an organization out of its own data. This can put intellectual property in jeopardy of insider theft, and place the entire business at risk if a critical audit requires immediate access to protected data. SecureZIP's contingency key capabilities ensure organizations are always able to quickly and easily access documents encrypted by their employees.

SecureZIP incorporates the RSA BSAFE cryptographic libraries, the most widely used e-security technology in the world, to deliver industry-proven file protection.

File name encryption masks file name, file size, and other information to further protect data if it is intercepted in transit or improperly accessed. Only SecureZIP provides file name encryption, overcoming vulnerabilities identified by leading cryptography experts in other ZIP data protection solutions.

While most encryption solutions make files larger, SecureZIP includes PKZIP's powerful compression algorithms to reduce file size by as much as 95 percent - dramatically reducing CPU cycle, DASD, tape, and bandwidth consumption.

Unlike other vendors who offer support only through email or online forums, PKWARE's experienced technical support staff offers live telephone support in addition to web and email support should any concerns ever arise.

Integration with IBM's Interactive System Productivity Facility (ISPF) allows system operators to initiate PKZIP actions ad hoc, using 3270 screen menus and displays.

Businesses often need to communicate securely between departments or with other organizations that may have different data security requirements. SecureZIP accommodates those who have PKI and those who don't by enabling encryption and decryption via passphrases, public key/private key pairs, or both at the same time depending on the access requirements of each intended recipient. Recipients can then decrypt files by presenting the correct passphrase or private key.

SecureZIP supports X.509 RSA v3 certificates issued from recognized certificate authorities such as VeriSign®, Entrust®, and Microsoft®.

SecureZIP enables users to sign files with their unique digital certificates. Recipients of signed files can validate the signature to ensure the sender is who he or she claims to be, and verify that the document has not been altered or tampered with since it was signed. In addition, digital signatures offer non-repudiation - in other words, the signer cannot later claim that the signature is not valid. Digital signatures are useful for enforcing accountability as required by regulations such as Sarbanes-Oxley.

SecureZIP Advanced Encryption Module includes a secure private key store that is compliant with major mainframe access control systems such as RACF®, ACF2®, and Top Secret®. The private key store ensures that access to encrypted files and digital signing are managed with appropriate controls.

SecureZIP offers an optional interface that integrates with Lightweight Directory Access Protocol (LDAP) compliant directories, such as Sun® iPlanet, Novell NetWare®, and Microsoft Active Directory®. LDAP integration makes it easy to locate, retrieve, and apply the public keys for certificate-based encryption.