Colleagues,
Environment:
AIX V5.3.0
TSM V5.3.2 (server and clients)
TSM V5.3.2 (Windows Server 2003 clients)
Question 1:
We are investigating client side data encryption (AES 128 bit).
How do I define the initial clear text key? What are the limitations
for selecting a proper key?
1 - 128 bits = 128/8 = 16 bytes = 16 characters long
2 - Can I have the initial key string be:
asdf3hjk6zxcv5nm (note: only 16 characters, only alpha numerics
and no spaces)
or
My key is this ? (note: only 16 characters, there are
spaces and none alpha numeric values)
or
asdfa9asdfasf2dfasdfasdf (note: there are more than 16
characters, alpha numerics
Which one(s) are valid?
Question 2:
We have (1) TSM server and one domain for a Production Peoplesoft
environment. Since we are new to TSM and data encryption we would
like to try implementing encryption with development data rather than
production data.
So, after I create a second, separate domain in TSM for the development
environment, I want to test the encryption feature.
My concern it that the development data is an exact copy of the production data. Is it possible to test encryption only with the test version of the data and not effect the production version with only one TSM server, but 2 different domains?
If so, what steps do I have to do in order to make this happen?
Thank - you ..... DeanY
Environment:
AIX V5.3.0
TSM V5.3.2 (server and clients)
TSM V5.3.2 (Windows Server 2003 clients)
Question 1:
We are investigating client side data encryption (AES 128 bit).
How do I define the initial clear text key? What are the limitations
for selecting a proper key?
1 - 128 bits = 128/8 = 16 bytes = 16 characters long
2 - Can I have the initial key string be:
asdf3hjk6zxcv5nm (note: only 16 characters, only alpha numerics
and no spaces)
or
My key is this ? (note: only 16 characters, there are
spaces and none alpha numeric values)
or
asdfa9asdfasf2dfasdfasdf (note: there are more than 16
characters, alpha numerics
Which one(s) are valid?
Question 2:
We have (1) TSM server and one domain for a Production Peoplesoft
environment. Since we are new to TSM and data encryption we would
like to try implementing encryption with development data rather than
production data.
So, after I create a second, separate domain in TSM for the development
environment, I want to test the encryption feature.
My concern it that the development data is an exact copy of the production data. Is it possible to test encryption only with the test version of the data and not effect the production version with only one TSM server, but 2 different domains?
If so, what steps do I have to do in order to make this happen?
Thank - you ..... DeanY
