I struggled with with and wrote Getting cipher keys to another site – the basics of Exporter and Importer keys in ICS <https://colinpaice.blog/2021/09/26/getting-cipher-keys-to-another-site-the-basics-of-exporter-and-importer-keys-in-icsf/> FICSF: why do I need to have transport keys as well as data encryption keys. <https://colinpaice.blog/2021/09/05/icsf-why-do-i-need-to-have-transport-keys-as-well-as-data-encryption-keys/> Can you send a secret to Mars? <https://colinpaice.blog/2021/08/22/can-you-send-a-secret-to-mars/> The short answer is you can generate keys at each end using DifFi Hellman - or generate a private/public, and send the public to the remote site.
Colin On Fri, 14 Jan 2022 at 18:00, Radoslaw Skorupka <[email protected]> wrote: > Let's assume two z/OS images and some data exchange. > One of possible methods is symmetric encryption. > However that requires key exchange. > I have the following idea: > 1. Both sides create asymetric key. > 2. Public keys are exported and exchanged. > 3. One side encrypt symm key using public key of another side. > 4. Second side decrypt symm key using it's own private key. > > Does it make sense? > Any hints? > What services to use in steps 4. and 5. ? > > -- > Radoslaw Skorupka > Lodz, Poland > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN > ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
